GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a vulnerability... High Unreviewed

CVE-2023-34437 was published Oct 19, 2023

SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To... High Unreviewed

CVE-2023-40361 was published Oct 20, 2023

Incorrect Permission Assignment for Critical Resource in GitHub Enterprise Server that allowed... Unknown Unreviewed

CVE-2023-23767 was published Oct 25, 2023

EisBaer Scada - CWE-732: Incorrect Permission Assignment for Critical Resource Critical Unreviewed

CVE-2023-42489 was published Oct 25, 2023

A logic issue was addressed with improved state management. This issue is fixed in macOS Sonoma... Moderate Unreviewed

CVE-2023-42861 was published Oct 25, 2023

Sourcecodester Free and Open Source inventory management system v1.0 is vulnerable to Incorrect... High Unreviewed

CVE-2023-46449 was published Oct 26, 2023

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in... Moderate Unreviewed

CVE-2023-5136 was published Nov 8, 2023

A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine... Moderate Unreviewed

CVE-2023-3282 was published Nov 8, 2023

Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint... High Unreviewed

CVE-2023-28134 was published Nov 13, 2023

An issue was discovered in Click Studios Passwordstate before 9811. Existing users (Security... Moderate Unreviewed

CVE-2023-47801 was published Nov 13, 2023

An improper authorization vulnerability [CWE-285] in FortiMail webmail version 7.2.0 through 7.2... Moderate Unreviewed

CVE-2023-36633 was published Nov 14, 2023

Insecure inherited permissions in some Intel(R) NUC Pro Software Suite installation software... Moderate Unreviewed

CVE-2022-41700 was published Nov 14, 2023

Insecure inherited permissions in some Intel(R) NUC Watchdog Timer installation software before... Moderate Unreviewed

CVE-2022-33898 was published Nov 14, 2023

Insecure inherited permissions in some Intel Rapid Storage Technology software before version 16... Moderate Unreviewed

CVE-2023-39230 was published Nov 14, 2023

Insecure inherited permissions in the installer for some Intel Server Configuration Utility... Moderate Unreviewed

CVE-2023-34997 was published Nov 14, 2023

Insecure inherited permissions in some Intel(R) Simics Simulator software before version 1.7.2... Moderate Unreviewed

CVE-2023-34314 was published Nov 14, 2023

xxl-job-admin vulnerable to Insecure Permissions Moderate

CVE-2023-48087 was published for com.xuxueli:xxl-job-admin (Maven) Nov 15, 2023

Honeywell ProWatch, 4.5, including all Service Pack versions, contain a Vulnerability in... High Unreviewed

CVE-2023-6179 was published Nov 17, 2023

The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks,... Moderate Unreviewed

CVE-2023-5651 was published Nov 20, 2023

The FACSChorus software database can be accessed directly with the privileges of the currently... Moderate Unreviewed

CVE-2023-29065 was published Nov 28, 2023

In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a... Critical Unreviewed

CVE-2023-49946 was published Dec 3, 2023

NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability Critical Unreviewed

CVE-2023-40302 was published Dec 7, 2023

Local Privilege Escalation in Windows High

CVE-2023-49797 was published for pyinstaller (pip) Dec 9, 2023

An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. Insufficient permissions... High Unreviewed

CVE-2023-50446 was published Dec 10, 2023

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS... Moderate Unreviewed

CVE-2023-42924 was published Dec 12, 2023

Previous 1…43…56 Next

Previous 1 2 … 41 42 43 44 45 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories