Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,822 advisories

Loading
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low... High Unreviewed
CVE-2022-25623 was published Mar 5, 2022
Printix Secure Cloud Print Management 1.3.1035.0 incorrectly uses Privileged APIs. Critical Unreviewed
CVE-2022-25089 was published Mar 4, 2022
Elasticsearch privilege escalation Moderate
CVE-2022-23708 was published for org.elasticsearch:elasticsearch (Maven) Mar 4, 2022
Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to a sensitive data leak that... Critical Unreviewed
CVE-2022-24305 was published Mar 3, 2022
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a... Moderate Unreviewed
CVE-2021-38955 was published Mar 2, 2022
PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could... Critical Unreviewed
CVE-2021-40046 was published Feb 26, 2022
Exploitation of this vulnerability may result in local privilege escalation and code execution.... High Unreviewed
CVE-2022-23921 was published Feb 26, 2022
WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to... High Unreviewed
CVE-2022-23176 was published Feb 25, 2022
net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain... High Unreviewed
CVE-2022-25636 was published Feb 25, 2022
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when... Critical Unreviewed
CVE-2022-25643 was published Feb 25, 2022
Pritunl Client through 1.2.3019.52 on Windows allows local privilege escalation, related to an... High Unreviewed
CVE-2022-25372 was published Feb 21, 2022
Improper Privilege Management in Snipe-IT High
CVE-2022-0611 was published for snipe/snipe-it (Composer) Feb 17, 2022
Potential security vulnerabilities including compromise of integrity, and allowed communication... High Unreviewed
CVE-2020-6922 was published Feb 17, 2022
A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a... High Unreviewed
CVE-2021-4106 was published Feb 17, 2022
Privilege Escalation in Kubernetes Critical
CVE-2018-1002105 was published for github.com/kubernetes/kubernetes (Go) Feb 15, 2022
Improper Privilege Management and Execution with Unnecessary Privileges in Kata Containers Moderate
CVE-2020-2023 was published for github.com/kata-containers/agent (Go) Feb 15, 2022
Privilege Escalation in Docker High
CVE-2014-3499 was published for github.com/docker/docker (Go) Feb 15, 2022
In Malwarebytes Binisoft Windows Firewall Control before 6.8.1.0, programs executed from the... High Unreviewed
CVE-2022-25150 was published Feb 15, 2022
Improper Privilege Management in Snipe-IT Moderate
CVE-2022-0579 was published for snipe/snipe-it (Composer) Feb 15, 2022
XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases contain a vulnerability due to... Critical Unreviewed
CVE-2022-23992 was published Feb 15, 2022
In updatePackageMappingsData of UsageStatsService.java, there is a possible way to bypass... High Unreviewed
CVE-2021-39619 was published Feb 12, 2022
A CWE-269: Improper Privilege Management vulnerability exists that could cause an arbitrary... Critical Unreviewed
CVE-2021-22801 was published Feb 12, 2022
Improper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30... Critical Unreviewed
CVE-2022-24927 was published Feb 12, 2022
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege... High Unreviewed
CVE-2021-42293 was published Feb 11, 2022
Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions... High Unreviewed
CVE-2021-0060 was published Feb 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database