GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,944
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,055
Maven 5,234
npm 3,739
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,035 advisories

Filter by severity

Sort by

Least recently updated

Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent. High Unreviewed

CVE-2024-52926 was published Nov 18, 2024

An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux... High Unreviewed

CVE-2020-15934 was published Dec 19, 2024

CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and... High Unreviewed

CVE-2024-38499 was published Dec 17, 2024

In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to... High Unreviewed

CVE-2024-40658 was published Sep 11, 2024

In onCreate of multiple files, there is a possible way to trick the user into granting health... High Unreviewed

CVE-2024-31323 was published Jul 9, 2024

In availableToWriteBytes of MessageQueueBase.h, there is a possible out of bounds write due to an... High Unreviewed

CVE-2024-31313 was published Jul 9, 2024

In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due... High Unreviewed

CVE-2024-34725 was published Jul 9, 2024

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without... High Unreviewed

CVE-2024-31318 was published Jul 9, 2024

In setTransactionState of SurfaceFlinger.cpp, there is a possible way to perform tapjacking due... High Unreviewed

CVE-2024-34743 was published Aug 16, 2024

In multiple locations, there is a possible out of bounds write due to a heap buffer overflow.... High Unreviewed

CVE-2024-0049 was published Mar 11, 2024

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed

CVE-2024-11721 was published Dec 14, 2024

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network... High Unreviewed

CVE-2023-25185 was published Jun 16, 2023

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. If/when CSP (as a... High Unreviewed

CVE-2023-25188 was published Jun 16, 2023

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2024-23253 was published Mar 8, 2024

A script injection vulnerability was identified in the Tuned package. The `instance_create()` D... High Unreviewed

CVE-2024-52336 was published Nov 26, 2024

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3... High Unreviewed

CVE-2024-1764 was published Mar 6, 2024

An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed

CVE-2023-34147 was published Jun 27, 2023

An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed

CVE-2023-34146 was published Jun 27, 2023

An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed

CVE-2023-34148 was published Jun 27, 2023

An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated... High Unreviewed

CVE-2024-49035 was published Nov 26, 2024

The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege... High Unreviewed

CVE-2024-9941 was published Nov 23, 2024

Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file... High Unreviewed

CVE-2024-0353 was published Feb 15, 2024

The WordPress Video Robot - The Ultimate Video Importer plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-9192 was published Nov 16, 2024

A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by... High Unreviewed

CVE-2024-9500 was published Nov 16, 2024

Unauthorized access vulnerability in the mobile application (com.transsion.phoenix) can lead to... High Unreviewed

CVE-2024-11206 was published Nov 14, 2024

Previous 1 2 3 4 5 … 81 82 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,035 advisories