Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,804
Erlang
29
GitHub Actions
16
Go
1,713
Maven
4,948
npm
3,477
NuGet
605
pip
3,007
Pub
10
RubyGems
830
Rust
774
Swift
34
Unreviewed advisories
All unreviewed
5,000+

11 advisories

Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion... Moderate Unreviewed
CVE-2023-28049 was published Feb 6, 2024
The application suffers from a privilege escalation vulnerability. A user with read... High Unreviewed
CVE-2023-41966 was published Oct 26, 2023
When running in Appliance mode, an authenticated user assigned the Administrator role may be... High Unreviewed
CVE-2023-43746 was published Oct 10, 2023
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain... High Unreviewed
CVE-2023-44218 was published Oct 3, 2023
Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management... High Unreviewed
CVE-2023-32457 was published Aug 29, 2023
Pimcore Privilege Defined With Unsafe Actions vulnerability Moderate
CVE-2023-2983 was published for pimcore/pimcore (Composer) Jun 6, 2023
SAP Authenticator for Android - version 1.3.0, allows the screen to be captured, if an authorized... Moderate Unreviewed
CVE-2023-27895 was published Mar 14, 2023
Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an... Moderate Unreviewed
CVE-2022-38124 was published Dec 13, 2022
Keycloak code execution via UMA policy abuse High
CVE-2019-10169 was published for org.keycloak:keycloak-authz-client (Maven) May 24, 2022
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this... Moderate Unreviewed
CVE-2019-14865 was published May 24, 2022
Privilege Defined With Unsafe Actions in Keycloak High
CVE-2019-10170 was published for org.keycloak:keycloak-core (Maven) Oct 21, 2021
ProTip! Advisories are also available from the GraphQL API