GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,988
Erlang
29
GitHub Actions
16
Go
1,776
Maven
5,000+
npm
3,542
NuGet
617
pip
3,125
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+
68 advisories
Filter by severity
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,...
High
Unreviewed
CVE-2022-3088
was published
Nov 29, 2022
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be...
High
Unreviewed
CVE-2023-0664
was published
Mar 29, 2023
Instruments with Illumina Universal Copy Service v1.x and
v2.x contain an unnecessary privileges...
Critical
Unreviewed
CVE-2023-1966
was published
Apr 28, 2023
Wings vulnerable to escape to host from installation container
Critical
CVE-2023-32080
was published
for
github.com/pterodactyl/wings
(Go)
May 11, 2023
A vulnerability was found in the HCI sockets implementation due to a missing capability check in...
Moderate
Unreviewed
CVE-2023-2002
was published
May 26, 2023
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution...
High
Unreviewed
CVE-2023-25521
was published
Jul 4, 2023
A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo...
High
Unreviewed
CVE-2022-40182
was published
Jul 6, 2023
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate...
Moderate
Unreviewed
CVE-2023-20210
was published
Jul 12, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions
High
Unreviewed
CVE-2023-39261
was published
Jul 26, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected...
High
Unreviewed
CVE-2023-38641
was published
Aug 8, 2023
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low...
High
Unreviewed
CVE-2023-32486
was published
Aug 16, 2023
A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation...
Moderate
Unreviewed
CVE-2023-20217
was published
Aug 17, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering...
Critical
Unreviewed
CVE-2023-31175
was published
Aug 31, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which...
High
Unreviewed
CVE-2023-4814
was published
Sep 14, 2023
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code...
Critical
Unreviewed
CVE-2023-4662
was published
Sep 15, 2023
One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access...
Moderate
Unreviewed
CVE-2023-4003
was published
Sep 27, 2023
kOps privilege escalation vulnerability
High
CVE-2023-1943
was published
for
k8s.io/kops
(Go)
Oct 12, 2023
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are
susceptible to a...
Moderate
Unreviewed
CVE-2023-27312
was published
Oct 12, 2023
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a
vulnerability which may allow...
High
Unreviewed
CVE-2023-27313
was published
Oct 12, 2023
IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that...
Moderate
Unreviewed
CVE-2023-43018
was published
Nov 3, 2023
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user...
High
Unreviewed
CVE-2023-33873
was published
Nov 15, 2023
Kruise allows leveraging the kruise-daemon pod to list all secrets in the entire cluster
Moderate
CVE-2023-30617
was published
for
github.com/openkruise/kruise
(Go)
Jan 5, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with...
High
Unreviewed
CVE-2023-46360
was published
Feb 6, 2024
A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser ...
Moderate
Unreviewed
CVE-2023-45592
was published
Mar 5, 2024
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the...
High
Unreviewed
CVE-2024-0073
was published
Mar 28, 2024
ProTip!
Advisories are also available from the
GraphQL API