GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,988
Erlang
29
GitHub Actions
16
Go
1,776
Maven
5,000+
npm
3,542
NuGet
617
pip
3,125
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,138 advisories
Filter by severity
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate...
Moderate
Unreviewed
CVE-2024-6908
was published
Jul 19, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management...
Moderate
Unreviewed
CVE-2024-30473
was published
Jul 18, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an...
Moderate
Unreviewed
CVE-2023-40223
was published
Jul 18, 2024
A flaw exists in Purity//FB whereby a local account is permitted to authenticate to the...
Critical
Unreviewed
CVE-2023-4976
was published
Jul 17, 2024
An improper privilege management vulnerability allowed users to migrate private repositories...
Moderate
Unreviewed
CVE-2024-5566
was published
Jul 17, 2024
An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk®...
Low
Unreviewed
CVE-2024-6326
was published
Jul 16, 2024
The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www...
Moderate
Unreviewed
CVE-2024-6325
was published
Jul 16, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows...
Moderate
Unreviewed
CVE-2024-39819
was published
Jul 15, 2024
Improper Privilege Management vulnerability in NooTheme Jobmonster allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-37927
was published
Jul 12, 2024
Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege...
High
Unreviewed
CVE-2024-37560
was published
Jul 12, 2024
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix...
High
Unreviewed
CVE-2024-6286
was published
Jul 10, 2024
Vulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8...
High
Unreviewed
CVE-2024-3325
was published
Jul 10, 2024
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code...
Moderate
Unreviewed
CVE-2024-31334
was published
Jul 9, 2024
In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion...
High
Unreviewed
CVE-2024-31320
was published
Jul 9, 2024
In onCreate of multiple files, there is a possible way to trick the user into granting health...
High
Unreviewed
CVE-2024-31323
was published
Jul 9, 2024
In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app...
Moderate
Unreviewed
CVE-2024-31322
was published
Jul 9, 2024
In DevmemXIntUnreserveRange of devicemem_server.c, there is a possible arbitrary code execution...
High
Unreviewed
CVE-2024-23711
was published
Jul 9, 2024
In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a...
Moderate
Unreviewed
CVE-2024-31311
was published
Jul 9, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
Critical
Unreviewed
CVE-2024-38089
was published
Jul 9, 2024
Improper Privilege Management vulnerability in themeenergy BookYourTravel allows Privilege...
High
Unreviewed
CVE-2024-37952
was published
Jul 9, 2024
Improper Privilege Management vulnerability in Dylan James Zephyr Project Manager allows...
High
Unreviewed
CVE-2024-37484
was published
Jul 9, 2024
Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor...
High
Unreviewed
CVE-2024-37455
was published
Jul 9, 2024
Improper Privilege Management vulnerability in Ekstrem Bir Bilgisayar Danismanlik Ic Ve Dis...
High
Unreviewed
CVE-2024-4341
was published
Jul 8, 2024
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote...
Critical
Unreviewed
CVE-2024-27710
was published
Jul 5, 2024
Improper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate...
High
Unreviewed
CVE-2024-25086
was published
Jul 2, 2024
ProTip!
Advisories are also available from the
GraphQL API