Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,421 advisories

Loading
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the... High Unreviewed
CVE-2023-39733 was published Oct 25, 2023
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows... High Unreviewed
CVE-2023-39734 was published Oct 25, 2023
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the... High Unreviewed
CVE-2023-39740 was published Oct 25, 2023
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux... High Unreviewed
CVE-2023-43506 was published Oct 25, 2023
VMware Fusion(13.x prior to 13.5) contains a local privilege escalation vulnerability that occurs... High Unreviewed
CVE-2023-34045 was published Oct 20, 2023
Pleaser privilege escalation vulnerability High
CVE-2023-46277 was published for pleaser (Rust) Oct 20, 2023
An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows local attackers to gain... High Unreviewed
CVE-2023-27793 was published Oct 19, 2023
An issue found in IXP Data Easy Install v.6.6.14884.0 allows a local attacker to gain privileges... High Unreviewed
CVE-2023-27795 was published Oct 19, 2023
A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63... High Unreviewed
CVE-2023-45883 was published Oct 19, 2023
SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN... High Unreviewed
CVE-2023-41715 was published Oct 18, 2023
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2023-22099 was published Oct 18, 2023
An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated... High Unreviewed
CVE-2023-20598 was published Oct 17, 2023
An issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, before 22.7 and... High Unreviewed
CVE-2023-43120 was published Oct 16, 2023
Backup, Recovery, and Media Services (BRMS) for IBM i 7.2, 7.3, and 7.4 contains a local... High Unreviewed
CVE-2023-40377 was published Oct 16, 2023
IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to... High Unreviewed
CVE-2023-38280 was published Oct 16, 2023
IBM Directory Server for IBM i contains a local privilege escalation vulnerability. A malicious... High Unreviewed
CVE-2023-40378 was published Oct 15, 2023
SnapCenter versions 4.8 through 4.9 are susceptible to a vulnerability which may allow an... High Unreviewed
CVE-2023-27316 was published Oct 13, 2023
An issue in Inspect Element Ltd Echo.ac v.5.2.1.0 allows a local attacker to gain privileges via... High Unreviewed
CVE-2023-38817 was published Oct 11, 2023
It is possible to sideload a compromised DLL during the installation at elevated privilege. High Unreviewed
CVE-2023-4936 was published Oct 11, 2023
An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the... High Unreviewed
CVE-2023-43960 was published Oct 11, 2023
Microsoft Office Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36569 was published Oct 10, 2023
An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of message... High Unreviewed
CVE-2023-26236 was published Oct 5, 2023
A vulnerability in the on-device application development workflow feature for the Cisco IOx... High Unreviewed
CVE-2023-20235 was published Oct 4, 2023
A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2... High Unreviewed
CVE-2023-44217 was published Oct 3, 2023
A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a... High Unreviewed
CVE-2023-36628 was published Oct 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database