GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
843 advisories
Filter by severity
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,...
High
Unreviewed
CVE-2024-4520
was published
Jun 4, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
High
Unreviewed
CVE-2024-23360
was published
Jun 3, 2024
The mobile application (com.transsion.videocallenhancer) interface has improper permission...
High
Unreviewed
CVE-2024-4988
was published
May 21, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users...
High
Unreviewed
CVE-2024-4151
was published
May 20, 2024
Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an...
High
Unreviewed
CVE-2023-45217
was published
May 16, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3...
High
Unreviewed
CVE-2023-43748
was published
May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow...
High
Unreviewed
CVE-2023-40071
was published
May 16, 2024
Improper access control in some Intel(R) Power Gadget software for macOS all versions may allow...
High
Unreviewed
CVE-2023-40070
was published
May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow...
High
Unreviewed
CVE-2022-37410
was published
May 16, 2024
Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225...
High
Unreviewed
CVE-2022-37341
was published
May 16, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access...
High
Unreviewed
CVE-2024-34099
was published
May 15, 2024
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions...
High
Unreviewed
CVE-2024-34221
was published
May 14, 2024
An issue was discovered on certain Nuki Home Solutions devices. Some BLE commands, which should...
High
Unreviewed
CVE-2022-32507
was published
May 14, 2024
Claris International has resolved an issue of potentially allowing unauthorized access to records...
High
Unreviewed
CVE-2024-27790
was published
May 14, 2024
In sendIntentSender of ActivityManagerService.java, there is a possible background activity...
High
Unreviewed
CVE-2024-0025
was published
May 7, 2024
An Improper Certificate Validation could allow a malicious actor with access to an adjacent...
High
Unreviewed
CVE-2024-29207
was published
May 7, 2024
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC...
High
Unreviewed
CVE-2024-23351
was published
May 6, 2024
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit,...
High
Unreviewed
CVE-2024-31964
was published
May 2, 2024
Multiple security vulnerabilities has been discovered in web interface of NetGuardian DIN Remote...
High
Unreviewed
CVE-2024-4225
was published
Apr 30, 2024
An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Improper access...
High
Unreviewed
CVE-2024-33673
was published
Apr 26, 2024
An issue was discovered in Zammad before 6.3.0. Users with customer access to a ticket could have...
High
Unreviewed
CVE-2024-33666
was published
Apr 26, 2024
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3...
High
Unreviewed
CVE-2024-23271
was published
Apr 24, 2024
An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from...
High
Unreviewed
CVE-2023-38297
was published
Apr 22, 2024
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a...
High
Unreviewed
CVE-2024-22811
was published
Apr 22, 2024
An issue was discovered in Italtel Embrace 1.6.4. The web application does not restrict or...
High
Unreviewed
CVE-2024-31846
was published
Apr 19, 2024
ProTip!
Advisories are also available from the
GraphQL API