Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,076 advisories

Loading
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37133 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-32854 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37126 was published Jul 2, 2024
Podman publishes a malicious image to public registries High
CVE-2022-1227 was published for github.com/containers/podman/v3 (Go) Apr 30, 2022
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in... High Unreviewed
CVE-2024-5009 was published Jun 25, 2024
Rancher's External RoleTemplates can lead to privilege escalation Moderate
CVE-2023-32196 was published for github.com/rancher/rancher (Go) Jun 17, 2024
Improper Privilege Management vulnerability in Membership Software WishList Member X allows... High Unreviewed
CVE-2024-37107 was published Jun 24, 2024
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions... High Unreviewed
CVE-2024-6240 was published Jun 21, 2024
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations... High Unreviewed
CVE-2024-2003 was published Jun 21, 2024
Privilege escalation vulnerability in the AMS module Impact: Successful exploitation of this... High Unreviewed
CVE-2024-36500 was published Jun 14, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful... Moderate Unreviewed
CVE-2024-36499 was published Jun 14, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows... Unknown Unreviewed
CVE-2024-5909 was published Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows... Unknown Unreviewed
CVE-2024-5907 was published Jun 12, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an... Moderate Unreviewed
CVE-2024-5759 was published Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions High
CVE-2024-3656 was published for org.keycloak:keycloak-services (Maven) Jun 11, 2024
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-26247 was published Mar 23, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11... Moderate Unreviewed
CVE-2024-33500 was published Jun 11, 2024
Calico privilege escalation vulnerability Moderate
CVE-2024-33522 was published for github.com/projectcalico/calico (Go) Apr 30, 2024
Neo4j Cypher component mishandles IMMUTABLE privileges Moderate
CVE-2024-34517 was published for org.neo4j:neo4j-cypher (Maven) May 7, 2024
Privilege Escalation in TYPO3 CMS Moderate
GHSA-v5jp-4h2p-j2p4 was published for typo3/cms (Composer) Jun 5, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation... Critical Unreviewed
CVE-2024-35700 was published Jun 4, 2024
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege... High Unreviewed
CVE-2023-47837 was published Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the command ... Moderate Unreviewed
CVE-2024-29976 was published Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the SUID... Moderate Unreviewed
CVE-2024-29975 was published Jun 4, 2024
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon... High Unreviewed
CVE-2020-1472 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API