GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
690 advisories
Filter by severity
In lunary-ai/lunary version 1.2.4, an improper access control vulnerability allows members with...
High
Unreviewed
CVE-2024-5714
was published
Jun 27, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa...
High
Unreviewed
CVE-2024-5650
was published
Jun 17, 2024
ColdFusion versions 2023u7, 2021u13 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-34112
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-26029
was published
Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos...
High
Unreviewed
CVE-2024-2698
was published
Jun 12, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically...
High
Unreviewed
CVE-2024-5126
was published
Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting...
High
Unreviewed
CVE-2024-5131
was published
Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including...
High
Unreviewed
CVE-2024-3504
was published
Jun 6, 2024
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,...
High
Unreviewed
CVE-2024-4520
was published
Jun 4, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
High
Unreviewed
CVE-2024-23360
was published
Jun 3, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users...
High
Unreviewed
CVE-2024-4151
was published
May 20, 2024
Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an...
High
Unreviewed
CVE-2023-45217
was published
May 16, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3...
High
Unreviewed
CVE-2023-43748
was published
May 16, 2024
Improper access control in some Intel(R) Power Gadget software for macOS all versions may allow...
High
Unreviewed
CVE-2023-40070
was published
May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow...
High
Unreviewed
CVE-2023-40071
was published
May 16, 2024
Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225...
High
Unreviewed
CVE-2022-37341
was published
May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow...
High
Unreviewed
CVE-2022-37410
was published
May 16, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access...
High
Unreviewed
CVE-2024-34099
was published
May 15, 2024
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC...
High
Unreviewed
CVE-2024-23351
was published
May 6, 2024
Multiple security vulnerabilities has been discovered in web interface of NetGuardian DIN Remote...
High
Unreviewed
CVE-2024-4225
was published
Apr 30, 2024
A data integrity vulnerability exists in the web interface /cgi-bin/upload_config.cgi...
High
Unreviewed
CVE-2023-45744
was published
Apr 17, 2024
gaizhenbiao/chuanhuchatgpt is vulnerable to improper access control, allowing unauthorized access...
High
Unreviewed
CVE-2024-2217
was published
Apr 10, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29054
was published
Apr 9, 2024
Azure CycleCloud Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29993
was published
Apr 9, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29055
was published
Apr 9, 2024
ProTip!
Advisories are also available from the
GraphQL API