GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,771
Maven
4,995
npm
3,541
NuGet
617
pip
3,120
Pub
10
RubyGems
838
Rust
788
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
781 advisories
Filter by severity
A vulnerability was reported in Elliptic Labs Virtual Lock Sensor for ThinkPad T14 Gen 3 that...
High
Unreviewed
CVE-2023-3112
was published
Oct 25, 2023
TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure permissions...
Critical
Unreviewed
CVE-2022-42150
was published
Oct 19, 2023
The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2023-35183
was published
Oct 19, 2023
The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2023-35181
was published
Oct 19, 2023
TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the ...
Critical
Unreviewed
CVE-2023-27133
was published
Oct 17, 2023
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux...
Moderate
Unreviewed
CVE-2023-45690
was published
Oct 16, 2023
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS allows an...
High
Unreviewed
CVE-2023-44194
was published
Oct 13, 2023
A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo...
High
Unreviewed
CVE-2022-3431
was published
Oct 9, 2023
Incorrect Default Permissions vulnerability in Hitachi JP1/Performance Management on Windows...
High
Unreviewed
CVE-2023-3440
was published
Oct 3, 2023
A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in...
Moderate
Unreviewed
CVE-2023-4065
was published
Sep 27, 2023
Local privilege escalation due to insecure folder permissions. The following products are...
Low
Unreviewed
CVE-2023-44157
was published
Sep 27, 2023
A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured...
Critical
Unreviewed
CVE-2022-4039
was published
Sep 22, 2023
Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions.
High
Unreviewed
CVE-2023-42261
was published
Sep 22, 2023
Sensitive information disclosure due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2023-5042
was published
Sep 20, 2023
Incorrect Default Permissions vulnerability due to incomplete fix to address CVE-2020-14496 in...
High
Unreviewed
CVE-2023-4088
was published
Sep 20, 2023
The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4...
Moderate
Unreviewed
CVE-2022-3466
was published
Sep 15, 2023
Incorrect Default Permissions vulnerability in Saphira Saphira Connect allows Privilege...
High
Unreviewed
CVE-2023-4664
was published
Sep 15, 2023
Insecure default permissions in Wing FTP Server (Admin Web Client) allows for privilege...
High
Unreviewed
CVE-2023-37878
was published
Sep 14, 2023
An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The...
High
Unreviewed
CVE-2023-31468
was published
Sep 11, 2023
An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control...
Critical
Unreviewed
CVE-2023-31068
was published
Sep 11, 2023
An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control...
Critical
Unreviewed
CVE-2023-31067
was published
Sep 11, 2023
A permissions issue was addressed with improved redaction of sensitive information. This issue is...
Moderate
Unreviewed
CVE-2023-34352
was published
Sep 6, 2023
Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an...
Moderate
Unreviewed
CVE-2023-2737
was published
Aug 16, 2023
Dell PowerScale OneFS 9.5.0.x contains an incorrect default permissions vulnerability. A low...
High
Unreviewed
CVE-2023-32492
was published
Aug 16, 2023
Incorrect default permissions in the MAVinci Desktop Software for Intel(R) Falcon 8+ before...
High
Unreviewed
CVE-2023-32547
was published
Aug 11, 2023
ProTip!
Advisories are also available from the
GraphQL API