GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,396

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

87 advisories

Filter by severity

Sort by

Least recently updated

SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a... Moderate Unreviewed

CVE-2023-27312 was published Oct 12, 2023

A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to... High Unreviewed

CVE-2023-5207 was published Sep 30, 2023

One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access... Moderate Unreviewed

CVE-2023-4003 was published Sep 27, 2023

Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code... Critical Unreviewed

CVE-2023-4662 was published Sep 15, 2023

A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed

CVE-2023-4814 was published Sep 14, 2023

An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed

CVE-2023-31175 was published Aug 31, 2023

A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation... Moderate Unreviewed

CVE-2023-20217 was published Aug 17, 2023

Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed

CVE-2023-32486 was published Aug 16, 2023

A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected... High Unreviewed

CVE-2023-38641 was published Aug 8, 2023

In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions High Unreviewed

CVE-2023-39261 was published Jul 26, 2023

A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate... Moderate Unreviewed

CVE-2023-20210 was published Jul 12, 2023

Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user... High Unreviewed

CVE-2023-34118 was published Jul 11, 2023

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo... High Unreviewed

CVE-2022-40182 was published Jul 6, 2023

NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution... High Unreviewed

CVE-2023-25521 was published Jul 4, 2023

A vulnerability was found in the HCI sockets implementation due to a missing capability check in... Moderate Unreviewed

CVE-2023-2002 was published May 26, 2023

Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges... Critical Unreviewed

CVE-2023-1966 was published Apr 28, 2023

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be... High Unreviewed

CVE-2023-0664 was published Mar 29, 2023

UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,... High Unreviewed

CVE-2022-3088 was published Nov 29, 2022

An attacker may be able to execute malicious actions due to the lack of device access protections... Critical Unreviewed

CVE-2022-2634 was published Aug 11, 2022

Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with... High Unreviewed

CVE-2022-1744 was published Jun 25, 2022

In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed

CVE-2021-41035 was published May 24, 2022

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM... High Unreviewed

CVE-2021-37174 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed

CVE-2021-25650 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed

CVE-2021-25651 was published May 24, 2022

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed

CVE-2021-1528 was published May 24, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

87 advisories