Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Some Huawei wearables have a permission management vulnerability. High Unreviewed
CVE-2021-37000 was published Dec 28, 2024
PVH guests have their ACPI tables constructed by the toolstack. The construction involves... Moderate Unreviewed
CVE-2024-45819 was published Dec 19, 2024
EaseUS Todo Backup version 20220111.390 - An omission during installation may allow a local... High Unreviewed
CVE-2023-32221 was published Jun 12, 2023
In isPackageDeviceAdmin of PackageManagerService.java, there is a possible edge case which could... High Unreviewed
CVE-2024-43769 was published Jan 3, 2025
there is a possible biometric bypass due to an unusual root cause. This could lead to local... High Unreviewed
CVE-2024-53835 was published Jan 3, 2025
there is a possible biometric bypass due to an unusual root cause. This could lead to local... High Unreviewed
CVE-2024-53840 was published Jan 3, 2025
In startListeningForDeviceStateChanges, there is a possible Permission Bypass due to a confused... High Unreviewed
CVE-2024-53841 was published Jan 3, 2025
there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to... High Unreviewed
CVE-2024-11624 was published Jan 3, 2025
Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444... High Unreviewed
CVE-2023-28739 was published Jan 7, 2025
A privilege escalation allowing remote code execution was discovered in the orchestration service. Critical Unreviewed
CVE-2023-2530 was published Jun 7, 2023
An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated... High Unreviewed
CVE-2021-27285 was published Jan 7, 2025
When a particular process flow is initiated, an attacker may be able to gain unauthorized... High Unreviewed
CVE-2023-41718 was published Nov 15, 2023
A vulnerability has been identified in the Ivanti Secure Access Windows client, which could allow... High Unreviewed
CVE-2023-35080 was published Nov 15, 2023
Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may... High Unreviewed
CVE-2023-23583 was published Nov 14, 2023
An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Privilege escalation can be... Critical Unreviewed
CVE-2022-41572 was published Jan 7, 2025
Incorrect access control in the Forgot Your Password function of EMSigner v2.8.7 allows... Critical Unreviewed
CVE-2023-43902 was published Nov 14, 2023
IBM OpenPages 9.0 could allow an authenticated user to obtain sensitive information such as... Moderate Unreviewed
CVE-2024-43176 was published Jan 9, 2025
An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges. Critical Unreviewed
CVE-2024-51162 was published Nov 20, 2024
In PRIMX ZED Enterprise up to 2024.3, technical files stored in local folders with common user... High Unreviewed
CVE-2024-46464 was published Jan 10, 2025
Vaultwarden vulnerable to user impersonation High
CVE-2024-55225 was published for vaultwarden (Rust) Jan 9, 2025
Vulnerability of improper permission control in the Gallery module Impact: Successful... Moderate Unreviewed
CVE-2023-52954 was published Jan 8, 2025
Permission control vulnerability in the Connectivity module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-56440 was published Jan 8, 2025
Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed
CVE-2024-56447 was published Jan 8, 2025
The Lock Master app 2.2.4 for Android allows unauthorized apps to modify the values in its... High Unreviewed
CVE-2023-29733 was published May 30, 2023
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10... Moderate Unreviewed
CVE-2019-3870 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database