Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated... High Unreviewed
CVE-2024-20435 was published Jul 17, 2024
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has... High Unreviewed
CVE-2024-35154 was published Jul 10, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27147 was published Jun 14, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with... High Unreviewed
CVE-2023-46360 was published Feb 6, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed
CVE-2023-30998 was published Jun 27, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed
CVE-2023-30997 was published Jun 27, 2024
IBM i 7.3, 7.4, and 7.5 product IBM TCP/IP Connectivity Utilities for i contains a local... High Unreviewed
CVE-2024-31890 was published Jun 21, 2024
Attackers can then execute malicious files by enabling certain services of the printer via the... High Unreviewed
CVE-2024-3498 was published Jun 14, 2024
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the... High Unreviewed
CVE-2024-0084 was published Jun 14, 2024
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate... High Unreviewed
CVE-2024-35142 was published May 31, 2024
IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a... High Unreviewed
CVE-2024-27260 was published May 16, 2024
Elevation of privilege vulnerability in GE HealthCare EchoPAC products High Unreviewed
CVE-2024-27110 was published May 14, 2024
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed
CVE-2023-32486 was published Aug 16, 2023
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10147 was published May 24, 2022
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow... High Unreviewed
CVE-2023-27313 was published Oct 12, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed
CVE-2023-4814 was published Sep 14, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected... High Unreviewed
CVE-2023-38641 was published Aug 8, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions High Unreviewed
CVE-2023-39261 was published Jul 26, 2023
A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo... High Unreviewed
CVE-2022-40182 was published Jul 6, 2023
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution... High Unreviewed
CVE-2023-25521 was published Jul 4, 2023
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before... High Unreviewed
CVE-2019-10167 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10144 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10145 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed
CVE-2021-25650 was published May 24, 2022
It was discovered freeradius up to and including version 3.0.19 does not correctly configure... High Unreviewed
CVE-2019-10143 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API