Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,159
NuGet
736
pip
3,958
Pub
12
RubyGems
946
Rust
1,027
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Buildroot before 0b2967e lacks the sticky bit for the /dev/shm directory. High Unreviewed
CVE-2024-34455 was published May 3, 2024
It was identified that in certain versions of Octopus Server, that a user created with no... Low Unreviewed
CVE-2024-4226 was published Apr 30, 2024
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2024-34011 was published Apr 29, 2024
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine... Low Unreviewed
CVE-2023-46270 was published Apr 29, 2024
Incorrect Permission Assignment for Critical Resource vulnerability in Havelsan Inc. Dialogue... Critical Unreviewed
CVE-2024-3375 was published Apr 29, 2024
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file... High Unreviewed
CVE-2022-48685 was published Apr 28, 2024
By default, SANnav OVA is shipped with root user login enabled. While protected by a password,... Moderate Unreviewed
CVE-2024-2859 was published Apr 27, 2024
Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing... High Unreviewed
CVE-2023-23976 was published Apr 24, 2024
Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre... High Unreviewed
CVE-2023-38295 was published Apr 22, 2024
An issue was discovered in a third-party component related to ro.boot.wifimacaddr, shipped on... High Unreviewed
CVE-2023-38291 was published Apr 22, 2024
Insecure Permission vulnerability in Agasta Sanketlife 2.0 Pocket 12-Lead ECG Monitor FW Version... Low Unreviewed
CVE-2024-32368 was published Apr 22, 2024
Certain software builds for the Itel Vision 3 Turbo Android device contain a vulnerable pre... Moderate Unreviewed
CVE-2023-38294 was published Apr 22, 2024
In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances... Moderate Unreviewed
CVE-2024-29967 was published Apr 19, 2024
Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes... Moderate Unreviewed
CVE-2024-29962 was published Apr 19, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2024-21116 was published Apr 17, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2024-21012 was published Apr 17, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed
CVE-2024-21004 was published Apr 17, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed
CVE-2024-21002 was published Apr 17, 2024
AWS Amplify CLI has incorrect trust policy management Critical
CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024
Mautic Sensitive Data Exposure due to inadequate user permission settings High
CVE-2022-25776 was published for mautic/core (Composer) Apr 12, 2024
lenonleite
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved... Moderate Unreviewed
CVE-2024-21615 was published Apr 12, 2024
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to... High Unreviewed
CVE-2024-26574 was published Apr 8, 2024
Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitation of... High Unreviewed
CVE-2023-52545 was published Apr 8, 2024
Permission verification vulnerability in the lock screen module. Impact: Successful exploitation... Moderate Unreviewed
CVE-2023-52717 was published Apr 7, 2024
Vulnerability of improper permission control in the window management module. Impact: Successful... Critical Unreviewed
CVE-2024-30415 was published Apr 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database