GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
507 advisories
Filter by severity
In Miele Benchmark Programming Tool with versions Prior to 1.2.71, executable files manipulated...
High
Unreviewed
CVE-2022-22521
was published
Apr 28, 2022
HIGH-LEIT V05.08.01.03 and HIGH-LEIT V04.25.00.00 to 4.25.01.01 for Windows from Vivavis contain...
High
Unreviewed
CVE-2024-38456
was published
Sep 3, 2024
Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware...
High
Unreviewed
CVE-2024-41720
was published
Aug 5, 2024
Vulnerability of permissions being not strictly verified in the WMS module. Successful...
High
Unreviewed
CVE-2023-52107
was published
Jan 16, 2024
VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2024-5930
was published
Aug 21, 2024
Insecure permissions in Linksys Velop WiFi 5 (WHW01v1) 1.1.13.202617 allows attackers to escalate...
High
Unreviewed
CVE-2024-36821
was published
Jun 11, 2024
CVE-2024-7513 IMPACT
A code execution vulnerability exists in the affected product. The...
High
Unreviewed
CVE-2024-7513
was published
Aug 14, 2024
In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local...
High
Unreviewed
CVE-2024-6619
was published
Aug 13, 2024
Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios to root because certain...
High
Unreviewed
CVE-2024-43199
was published
Aug 7, 2024
A privilege escalation vulnerability exists in the affected products which could allow a...
High
Unreviewed
CVE-2024-6435
was published
Jul 16, 2024
A “CWE-732: Incorrect Permission Assignment for Critical Resource” in the ThermoscanIP...
High
Unreviewed
CVE-2024-31202
was published
Jul 31, 2024
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing...
High
Unreviewed
CVE-2019-15752
was published
May 24, 2022
The PowerPack Pro for Elementor plugin for WordPress is vulnerable to privilege escalation in all...
High
Unreviewed
CVE-2024-3668
was published
Jun 8, 2024
Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2...
High
Unreviewed
CVE-2024-28827
was published
Jul 10, 2024
A vulnerability has been identified in SINEC NMS (All versions < V2.0). The affected application...
High
Unreviewed
CVE-2022-30527
was published
Oct 10, 2023
A local attacker can escalate privileges on affected Check Point ZoneAlarm Extreme Security...
High
Unreviewed
CVE-2024-24910
was published
Apr 18, 2024
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege...
High
Unreviewed
CVE-2022-22960
was published
Apr 14, 2022
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-21431
was published
Mar 12, 2024
A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.20). The...
High
Unreviewed
CVE-2023-45205
was published
Oct 10, 2023
A10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-30369
was published
Jun 6, 2024
On Unix systems (Linux, MacOS), Arc uses a temporary file with unsafe privileges.
By tampering...
High
Unreviewed
CVE-2023-5936
was published
May 15, 2024
Exposed IOCTL with Insufficient Access Control in Phoenix WinFlash Driver on Windows allows...
High
Unreviewed
CVE-2023-35841
was published
May 14, 2024
Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices
High
Unreviewed
CVE-2024-1486
was published
May 14, 2024
NVIDIA distributions of Jetson Linux contain a vulnerability where an error in the IOMMU...
High
Unreviewed
CVE-2022-21819
was published
Mar 12, 2022
Voltronic Power ViewPower Incorrect Permission Assignment Local Privilege Escalation...
High
Unreviewed
CVE-2023-51579
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API