GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,013
Erlang
29
GitHub Actions
16
Go
1,806
Maven
5,000+
npm
3,553
NuGet
632
pip
3,148
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
306 advisories
Filter by severity
An incorrect permission in the installation directory for the shared NI SystemLink Server...
Moderate
Unreviewed
CVE-2024-6122
was published
Jul 22, 2024
Denial of service vulnerability present shortly after product installation or upgrade,...
Moderate
Unreviewed
CVE-2024-3779
was published
Jul 16, 2024
Incorrect Default Permissions, Improper Preservation of Permissions vulnerability in Hitachi Ops...
Moderate
Unreviewed
CVE-2024-2819
was published
Jul 2, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain...
Moderate
Unreviewed
CVE-2024-35139
was published
Jun 28, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could disclose sensitive information...
Moderate
Unreviewed
CVE-2023-38368
was published
Jun 27, 2024
Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows...
Moderate
Unreviewed
CVE-2024-22385
was published
Jun 25, 2024
Local privilege escalation due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2024-34012
was published
Jun 14, 2024
An attacker with admin access can install rogue applications. As for the affected products/models...
Moderate
Unreviewed
CVE-2024-27180
was published
Jun 14, 2024
Incorrect default permissions issue exists in Unifier and Unifier Cast Version.5.0 or later, and...
Moderate
Unreviewed
CVE-2024-23847
was published
May 31, 2024
Incorrect default permissions in some Endurance Gaming Mode software installers before version 1...
Moderate
Unreviewed
CVE-2023-42433
was published
May 16, 2024
Incorrect default permissions in some onboard video driver software before version 1.14 for Intel...
Moderate
Unreviewed
CVE-2023-42668
was published
May 16, 2024
Local privilege escalation due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2024-34011
was published
Apr 29, 2024
In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances...
Moderate
Unreviewed
CVE-2024-29967
was published
Apr 19, 2024
Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes...
Moderate
Unreviewed
CVE-2024-29962
was published
Apr 19, 2024
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved...
Moderate
Unreviewed
CVE-2024-21615
was published
Apr 12, 2024
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder...
Moderate
Unreviewed
CVE-2024-25958
was published
Mar 26, 2024
Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0...
Moderate
Unreviewed
CVE-2023-28389
was published
Mar 14, 2024
Microsoft Defender Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-20671
was published
Mar 12, 2024
Sensitive information disclosure due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2023-48678
was published
Feb 27, 2024
The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and...
Moderate
Unreviewed
CVE-2024-25605
was published
Feb 20, 2024
Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions...
Moderate
Unreviewed
CVE-2024-22430
was published
Feb 1, 2024
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023...
Moderate
Unreviewed
CVE-2023-29081
was published
Jan 26, 2024
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio...
Moderate
Unreviewed
CVE-2022-4964
was published
Jan 24, 2024
A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID...
Moderate
Unreviewed
CVE-2024-0770
was published
Jan 22, 2024
Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for...
Moderate
Unreviewed
CVE-2023-29244
was published
Jan 19, 2024
ProTip!
Advisories are also available from the
GraphQL API