Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,831 advisories

Loading
A local privilege escalation vulnerability in UI Desktop for Windows (Version 0.55.1.2 and... High Unreviewed
CVE-2022-35257 was published Sep 25, 2022
The “LANDesk(R) Management Agent” service exposes a socket and once connected, it is possible to... High Unreviewed
CVE-2022-30121 was published Sep 25, 2022
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4... Moderate Unreviewed
CVE-2022-32781 was published Sep 25, 2022
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4... Moderate Unreviewed
CVE-2022-32782 was published Sep 25, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.6 and... High Unreviewed
CVE-2022-32819 was published Sep 25, 2022
This issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6,... High Unreviewed
CVE-2022-32829 was published Sep 25, 2022
An authorization issue was addressed with improved state management. This issue is fixed in iOS... High Unreviewed
CVE-2022-32826 was published Sep 25, 2022
An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via the UserService.php and... High Unreviewed
CVE-2025-44040 was published May 21, 2025
Check Point ZoneAlarm Extreme Security before 15.8.211.19229 allows local users to escalate... High Unreviewed
CVE-2022-41604 was published Sep 28, 2022
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.5. An app... High Unreviewed
CVE-2022-32801 was published Sep 25, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Moderate Unreviewed
CVE-2025-24183 was published May 19, 2025
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation... High Unreviewed
CVE-2019-1007 was published May 24, 2022
An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration... High Unreviewed
CVE-2022-42717 was published Oct 12, 2022
A Vertical Privilege Escalation issue in Merchandise Online Store v.1.0 allows an attacker to get... High Unreviewed
CVE-2022-42238 was published Oct 11, 2022
Gardener allows bypassing project secret validation which can lead to privilege escalation Critical
CVE-2025-47283 was published for github.com/gardener/gardener (Go) May 19, 2025
petersutter rfranzke
donistz timuthy JordanJordanov
Credited to petersutter, rfranzke, donistz, timuthy, and JordanJordanov
Gardener External DNS Management allows malicious google credential in DNS secret to lead to privilege escalation Critical
CVE-2025-47282 was published for github.com/gardener/external-dns-management (Go) May 19, 2025
petersutter donistz
MartinWeindel JordanJordanov
Credited to petersutter, donistz, MartinWeindel, and JordanJordanov
Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to... High Unreviewed
CVE-2025-27468 was published May 13, 2025
Dell PowerScale InsightIQ, versions 5.0 through 5.2, contains an improper privilege management... High Unreviewed
CVE-2025-30475 was published May 15, 2025
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user... Moderate Unreviewed
CVE-2024-22239 was published Feb 6, 2024
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user... High Unreviewed
CVE-2024-22237 was published Feb 6, 2024
Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-29976 was published May 13, 2025
A vulnerability within the Software Updater functionality of Avira Security for Windows allowed... High Unreviewed
CVE-2022-3368 was published Oct 18, 2022
Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9.1.1, v9.0.1e,... High Unreviewed
CVE-2022-28169 was published Oct 26, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2024-21111 was published Apr 17, 2024
On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device... High Unreviewed
CVE-2024-8100 was published May 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database