Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,205 advisories

Loading
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27151 was published Jun 14, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27149 was published Jun 14, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27152 was published Jun 14, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27153 was published Jun 14, 2024
CWE-276: Incorrect Default Permissions vulnerability exists that could allow an authenticated... High Unreviewed
CVE-2024-37038 was published Jun 12, 2024
Incorrect default permissions issue exists in Unifier and Unifier Cast Version.5.0 or later, and... Moderate Unreviewed
CVE-2024-23847 was published May 31, 2024
Incorrect default permissions in some onboard video driver software before version 1.14 for Intel... Moderate Unreviewed
CVE-2023-42668 was published May 16, 2024
Incorrect default permissions in some Endurance Gaming Mode software installers before version 1... Moderate Unreviewed
CVE-2023-42433 was published May 16, 2024
Incorrect default permissions in some Intel(R) GPA software installers before version 2023.3 may... High Unreviewed
CVE-2023-43629 was published May 16, 2024
Incorrect default permissions in some Intel(R) GPA software installers before version 2023.3 may... High Unreviewed
CVE-2023-24460 was published May 16, 2024
Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource... Moderate Unreviewed
CVE-2024-34223 was published May 14, 2024
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions... High Unreviewed
CVE-2024-34221 was published May 14, 2024
extcap/nrf_sniffer_ble.py, extcap/nrf_sniffer_ble.sh, extcap/SnifferAPI/*.py in Nordic... High Unreviewed
CVE-2023-46870 was published May 14, 2024
On Windows a directory returned by tempfile.mkdtemp() would not always have permissions set to... High Unreviewed
CVE-2024-4030 was published May 7, 2024
Clario through 2024-04-11 for Desktop has weak permissions for %PROGRAMDATA%\Clario and tries to... High Unreviewed
CVE-2024-34474 was published May 5, 2024
Buildroot before 0b2967e lacks the sticky bit for the /dev/shm directory. High Unreviewed
CVE-2024-34455 was published May 3, 2024
It was identified that in certain versions of Octopus Server, that a user created with no... Low Unreviewed
CVE-2024-4226 was published Apr 30, 2024
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2024-34011 was published Apr 29, 2024
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine... Low Unreviewed
CVE-2023-46270 was published Apr 29, 2024
Incorrect Permission Assignment for Critical Resource vulnerability in Havelsan Inc. Dialogue... Critical Unreviewed
CVE-2024-3375 was published Apr 29, 2024
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file... High Unreviewed
CVE-2022-48685 was published Apr 28, 2024
By default, SANnav OVA is shipped with root user login enabled. While protected by a password,... Moderate Unreviewed
CVE-2024-2859 was published Apr 27, 2024
Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing... High Unreviewed
CVE-2023-23976 was published Apr 24, 2024
Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre... High Unreviewed
CVE-2023-38295 was published Apr 22, 2024
An issue was discovered in a third-party component related to ro.boot.wifimacaddr, shipped on... High Unreviewed
CVE-2023-38291 was published Apr 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database