Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
738
pip
3,959
Pub
12
RubyGems
946
Rust
1,027
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
An issue in Secnet Security Network Intelligent AC Management System v.1.02.040 allows a local... High Unreviewed
CVE-2024-30977 was published Apr 5, 2024
Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%... High Unreviewed
CVE-2024-27674 was published Apr 3, 2024
Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R)... Moderate Unreviewed
CVE-2023-29162 was published Mar 28, 2024
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to... High Unreviewed
CVE-2024-0259 was published Mar 28, 2024
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder... Moderate Unreviewed
CVE-2024-25958 was published Mar 26, 2024
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments. Low Unreviewed
CVE-2024-30204 was published Mar 25, 2024
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. The... Moderate Unreviewed
CVE-2024-22085 was published Mar 20, 2024
Insecure permissions for log files of AVSystem Unified Management Platform (UMP) 23.07.0.16567... Moderate Unreviewed
CVE-2024-25654 was published Mar 18, 2024
ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files. Moderate
CVE-2024-28862 was published for rotp (RubyGems) Mar 18, 2024
G-Rath
BMC Control-M branches 9.0.20 and 9.0.21 upon user login load all Dynamic Link Libraries (DLL) ... Moderate Unreviewed
CVE-2024-1605 was published Mar 18, 2024
Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0... Moderate Unreviewed
CVE-2023-28389 was published Mar 14, 2024
Microsoft Defender Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-20671 was published Mar 12, 2024
A permissions issue was addressed to help ensure Personas are always protected This issue is... Moderate Unreviewed
CVE-2024-23295 was published Mar 8, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-23201 was published Mar 8, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2024-23253 was published Mar 8, 2024
Phone information disclosure vulnerability Moderate
CVE-2024-22889 was published for Plone (pip) Mar 6, 2024
Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows... Moderate Unreviewed
CVE-2024-20841 was published Mar 5, 2024
Incorrect default permission in AppLock prior to SMR MAr-2024 Release 1 allows local attackers to... Moderate Unreviewed
CVE-2024-20830 was published Mar 5, 2024
In da, there is a possible permission bypass due to a missing permission check. This could lead... High Unreviewed
CVE-2024-20005 was published Mar 4, 2024
Apache Airflow: Incorrect Default Permissions in audit logs for Ops and Viewers users Moderate
CVE-2024-26280 was published for apache-airflow (pip) Mar 1, 2024
oscerd sunSUNQ
Couchbase Server 7.1.x and 7.2.x before 7.2.4 does not require authentication for the /admin... High Unreviewed
CVE-2023-49338 was published Feb 29, 2024
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a... Moderate Unreviewed
CVE-2024-26302 was published Feb 28, 2024
Sensitive information disclosure due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2023-48678 was published Feb 27, 2024
The TD Bank TD Advanced Dashboard client through 3.0.3 for macOS allows arbitrary code execution... High Unreviewed
CVE-2023-50975 was published Feb 21, 2024
The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions... High Unreviewed
CVE-2023-7235 was published Feb 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database