Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

810 advisories

Loading
Dell SupportAssist for Home PCs Installer Executable file version prior to 3.13.2.19 used for... Moderate Unreviewed
CVE-2023-25535 was published Oct 17, 2024
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit... Moderate Unreviewed
CVE-2024-45461 was published Oct 16, 2024
Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800... Moderate Unreviewed
CVE-2024-22068 was published Oct 10, 2024
In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API... Moderate Unreviewed
CVE-2024-7048 was published Oct 10, 2024
VMware NSX contains a local privilege escalation vulnerability.  An authenticated malicious... Moderate Unreviewed
CVE-2024-38818 was published Oct 9, 2024
A privilege escalation (PE) vulnerability in the XML API of Palo Alto Networks PAN-OS software... Moderate Unreviewed
CVE-2024-9471 was published Oct 9, 2024
A security flaw has been discovered in Solvait version 24.4.2 that allows an attacker to elevate... Moderate Unreviewed
CVE-2024-45919 was published Oct 7, 2024
An issue in Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing... Moderate Unreviewed
CVE-2024-44439 was published Oct 4, 2024
An improper privilege management vulnerability allowed arbitrary workflows to be committed using... Moderate Unreviewed
CVE-2024-8263 was published Sep 23, 2024
Ubiquiti AirMax firmware version firmware version 8 allows attackers with physical access to gain... Moderate Unreviewed
CVE-2024-44540 was published Sep 23, 2024
Entrust Instant Financial Issuance (formerly known as Cardwizard) 6.10.0, 6.9.0, 6.9.1, 6.9.2,... Moderate Unreviewed
CVE-2024-39342 was published Sep 23, 2024
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... Moderate Unreviewed
CVE-2024-7890 was published Sep 12, 2024
Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A... Moderate Unreviewed
CVE-2024-39574 was published Sep 10, 2024
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as... Moderate Unreviewed
CVE-2024-4259 was published Sep 3, 2024
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed
CVE-2024-4428 was published Aug 29, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed
CVE-2024-42441 was published Aug 14, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed
CVE-2024-42440 was published Aug 14, 2024
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a... Moderate Unreviewed
CVE-2024-6758 was published Aug 12, 2024
An Improper access control vulnerability was found in Avaya Aura System Manager which could allow... Moderate Unreviewed
CVE-2024-7480 was published Aug 8, 2024
Privilege escalation vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed
CVE-2024-6359 was published Aug 6, 2024
An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements... Moderate Unreviewed
CVE-2024-27357 was published Jul 26, 2024
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed
CVE-2024-1575 was published Jul 23, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a... Moderate Unreviewed
CVE-2024-34457 was published Jul 22, 2024
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate... Moderate Unreviewed
CVE-2024-6908 was published Jul 19, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an... Moderate Unreviewed
CVE-2023-40223 was published Jul 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database