GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,076 advisories
Filter by severity
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37133
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-32854
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37126
was published
Jul 2, 2024
Podman publishes a malicious image to public registries
High
CVE-2022-1227
was published
for
github.com/containers/podman/v3
(Go)
Apr 30, 2022
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in...
High
Unreviewed
CVE-2024-5009
was published
Jun 25, 2024
Rancher's External RoleTemplates can lead to privilege escalation
Moderate
CVE-2023-32196
was published
for
github.com/rancher/rancher
(Go)
Jun 17, 2024
Improper Privilege Management vulnerability in Membership Software WishList Member X allows...
High
Unreviewed
CVE-2024-37107
was published
Jun 24, 2024
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions...
High
Unreviewed
CVE-2024-6240
was published
Jun 21, 2024
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations...
High
Unreviewed
CVE-2024-2003
was published
Jun 21, 2024
Privilege escalation vulnerability in the AMS module
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2024-36500
was published
Jun 14, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-36499
was published
Jun 14, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Unknown
Unreviewed
CVE-2024-5909
was published
Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows...
Unknown
Unreviewed
CVE-2024-5907
was published
Jun 12, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an...
Moderate
Unreviewed
CVE-2024-5759
was published
Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions
High
CVE-2024-3656
was published
for
org.keycloak:keycloak-services
(Maven)
Jun 11, 2024
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-26247
was published
Mar 23, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11...
Moderate
Unreviewed
CVE-2024-33500
was published
Jun 11, 2024
Calico privilege escalation vulnerability
Moderate
CVE-2024-33522
was published
for
github.com/projectcalico/calico
(Go)
Apr 30, 2024
Neo4j Cypher component mishandles IMMUTABLE privileges
Moderate
CVE-2024-34517
was published
for
org.neo4j:neo4j-cypher
(Maven)
May 7, 2024
Privilege Escalation in TYPO3 CMS
Moderate
GHSA-v5jp-4h2p-j2p4
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-35700
was published
Jun 4, 2024
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege...
High
Unreviewed
CVE-2023-47837
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the command ...
Moderate
Unreviewed
CVE-2024-29976
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the SUID...
Moderate
Unreviewed
CVE-2024-29975
was published
Jun 4, 2024
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon...
High
Unreviewed
CVE-2020-1472
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API