Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,419 advisories

Loading
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation... High Unreviewed
CVE-2023-41099 was published Mar 22, 2024
As a part of Tenable’s vulnerability disclosure program, a vulnerability in a Nessus plugin was... High Unreviewed
CVE-2024-2390 was published Mar 18, 2024
An issue in NETGEAR-DGND4000 v.1.1.00.15_1.00.15 allows a remote attacker to escalate privileges... High Unreviewed
CVE-2023-50677 was published Mar 15, 2024
The FTL Server component of TIBCO Software Inc.'s TIBCO FTL - Enterprise Edition contains a... High Unreviewed
CVE-2024-1138 was published Mar 12, 2024
Windows Error Reporting Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26169 was published Mar 12, 2024
In ppcfw_init_secpolicy of ppcfw.c, there is a possible permission bypass due to uninitialized... High Unreviewed
CVE-2024-27233 was published Mar 11, 2024
In onSkipButtonClick of FaceEnrollFoldPage.java, there is a possible way to access the file the... High Unreviewed
CVE-2024-27222 was published Mar 11, 2024
In policy_check of fvp.c, there is a possible out of bounds write due to a missing bounds check.... High Unreviewed
CVE-2024-27210 was published Mar 11, 2024
In strncpy of strncpy.c, there is a possible out of bounds write due to a missing bounds check.... High Unreviewed
CVE-2024-27224 was published Mar 11, 2024
In config_gov_time_windows of tmu.c, there is a possible out of bounds write due to a missing... High Unreviewed
CVE-2024-22008 was published Mar 11, 2024
Account Takeover via Session Fixation in Zitadel [Bypassing MFA] High
CVE-2024-28197 was published for github.com/zitadel/zitadel (Go) Mar 11, 2024
amit-laish
Credited to amit-laish
In multiple locations, there is a possible out of bounds write due to a heap buffer overflow.... High Unreviewed
CVE-2024-0049 was published Mar 11, 2024
In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier... High Unreviewed
CVE-2024-0046 was published Mar 11, 2024
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS... High Unreviewed
CVE-2024-23276 was published Mar 8, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2024-23253 was published Mar 8, 2024
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain... High Unreviewed
CVE-2024-22752 was published Mar 7, 2024
Grafana's users with permissions to create a data source can CRUD all data sources High
CVE-2024-1442 was published for github.com/grafana/grafana (Go) Mar 7, 2024
Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3... High Unreviewed
CVE-2024-1764 was published Mar 6, 2024
An issue was discovered in Presta World "Account Manager - Sales Representative & Dealers - CRM" ... High Unreviewed
CVE-2024-25842 was published Mar 3, 2024
Improper initialization of default settings in TeamViewer Remote Client prior version 15.51.5 for... High Unreviewed
CVE-2024-0819 was published Feb 27, 2024
A flaw in the installer for Thales SafeNet Sentinel HASP LDK prior to 9.16 on Windows allows an... High Unreviewed
CVE-2024-0197 was published Feb 27, 2024
A flaw in Thales SafeNet Authentication Client prior to 10.8 R10 on Windows allows an attacker to... High Unreviewed
CVE-2023-7016 was published Feb 27, 2024
A flaw in the Windows Installer in Thales SafeNet Authentication Client prior to 10.8 R10 on... High Unreviewed
CVE-2023-5993 was published Feb 27, 2024
As a manager, you should not be able to modify a series of settings. In the UI this is indeed... High Unreviewed
CVE-2024-0439 was published Feb 26, 2024
On Linux, Node.js ignores certain environment variables if those may have been set by an... High Unreviewed
CVE-2024-21892 was published Feb 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database