GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
876 advisories
Filter by severity
Ubiquiti AirMax firmware version firmware version 8 allows attackers with physical access to gain...
Moderate
Unreviewed
CVE-2024-44540
was published
Sep 23, 2024
An improper privilege management vulnerability allowed arbitrary workflows to be committed using...
Moderate
Unreviewed
CVE-2024-8263
was published
Sep 23, 2024
Entrust Instant Financial Issuance (formerly known as Cardwizard) 6.10.0, 6.9.0, 6.9.1, 6.9.2,...
Moderate
Unreviewed
CVE-2024-39342
was published
Sep 23, 2024
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix...
Moderate
Unreviewed
CVE-2024-7890
was published
Sep 12, 2024
Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A...
Moderate
Unreviewed
CVE-2024-39574
was published
Sep 10, 2024
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as...
Moderate
Unreviewed
CVE-2024-4259
was published
Sep 3, 2024
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal...
Moderate
Unreviewed
CVE-2024-4428
was published
Aug 29, 2024
Microcks's POST /api/import and POST /api/export endpoints allow non-administrator access
Moderate
CVE-2024-44076
was published
for
io.github.microcks:microcks-app
(Maven)
Aug 19, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom...
Moderate
Unreviewed
CVE-2024-42440
was published
Aug 14, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom...
Moderate
Unreviewed
CVE-2024-42441
was published
Aug 14, 2024
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a...
Moderate
Unreviewed
CVE-2024-6758
was published
Aug 12, 2024
An Improper access control vulnerability was found in Avaya Aura System Manager which could allow...
Moderate
Unreviewed
CVE-2024-7480
was published
Aug 8, 2024
Privilege escalation vulnerability identified in OpenText ArcSight Intelligence.
Moderate
Unreviewed
CVE-2024-6359
was published
Aug 6, 2024
Apache Linkis vulnerable to privilege escalation
Moderate
CVE-2024-27181
was published
for
org.apache.linkis:linkis
(Maven)
Aug 2, 2024
Harbor fails to validate the user permissions when updating project configurations
Moderate
CVE-2024-22278
was published
for
github.com/goharbor/harbor
(Go)
Jul 31, 2024
An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements...
Moderate
Unreviewed
CVE-2024-27357
was published
Jul 26, 2024
The Argo CD web terminal session does not handle the revocation of user permissions properly
Moderate
CVE-2024-41666
was published
for
github.com/argoproj/argo-cd/v2
(Go)
Jul 24, 2024
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3...
Moderate
Unreviewed
CVE-2024-1575
was published
Jul 23, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a...
Moderate
Unreviewed
CVE-2024-34457
was published
Jul 22, 2024
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate...
Moderate
Unreviewed
CVE-2024-6908
was published
Jul 19, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an...
Moderate
Unreviewed
CVE-2023-40223
was published
Jul 18, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management...
Moderate
Unreviewed
CVE-2024-30473
was published
Jul 18, 2024
An improper privilege management vulnerability allowed users to migrate private repositories...
Moderate
Unreviewed
CVE-2024-5566
was published
Jul 17, 2024
The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www...
Moderate
Unreviewed
CVE-2024-6325
was published
Jul 16, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows...
Moderate
Unreviewed
CVE-2024-39819
was published
Jul 15, 2024
ProTip!
Advisories are also available from the
GraphQL API