Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,037
Erlang
29
GitHub Actions
18
Go
1,851
Maven
5,000+
npm
3,586
NuGet
636
pip
3,169
Pub
10
RubyGems
850
Rust
803
Swift
34
Unreviewed advisories
All unreviewed
5,000+

11 advisories

In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed
CVE-2021-41035 was published May 24, 2022
An attacker may be able to execute malicious actions due to the lack of device access protections... Critical Unreviewed
CVE-2022-2634 was published Aug 11, 2022
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges... Critical Unreviewed
CVE-2023-1966 was published Apr 28, 2023
Wings vulnerable to escape to host from installation container Critical
CVE-2023-32080 was published for github.com/pterodactyl/wings (Go) May 11, 2023
chirag350
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed
CVE-2023-31175 was published Aug 31, 2023
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code... Critical Unreviewed
CVE-2023-4662 was published Sep 15, 2023
An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary... Critical Unreviewed
CVE-2024-1626 was published Apr 16, 2024
Toshiba printers use SNMP for configuration. Using the private community, it is possible to... Critical Unreviewed
CVE-2024-27143 was published Jun 14, 2024
Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, Spotfire Spotfire for AWS... Critical Unreviewed
CVE-2024-3330 was published Jun 27, 2024
A vulnerability in APIML Spring Cloud Gateway which leverages user privileges by unexpected... Critical Unreviewed
CVE-2024-6834 was published Jul 17, 2024
Execution with unnecessary privileges in PerkinElmer ProcessPlus allows an attacker to spawn a... Critical Unreviewed
CVE-2024-6913 was published Jul 22, 2024
ProTip! Advisories are also available from the GraphQL API