Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,422 advisories

Loading
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-29350 was published May 6, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26244 was published Apr 27, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26245 was published Apr 27, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26246 was published Apr 27, 2023
Improper Privilege Management in microweber High
CVE-2023-2240 was published for microweber/microweber (Composer) Apr 22, 2023
The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2022-47505 was published Apr 21, 2023
A local privilege escalation (LPE) vulnerability in UI Desktop for Windows (Version 0.59.1.71 and... High Unreviewed
CVE-2023-28122 was published Apr 19, 2023
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2023-21990 was published Apr 18, 2023
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2023-21987 was published Apr 18, 2023
Vulnerability in the Oracle Solaris product of Oracle Systems (component: NSSwitch). Supported... High Unreviewed
CVE-2023-21896 was published Apr 18, 2023
An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges... High Unreviewed
CVE-2023-27651 was published Apr 14, 2023
A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE... High Unreviewed
CVE-2023-1326 was published Apr 14, 2023
On affected modular platforms running Arista EOS equipped with both redundant supervisor modules... High Unreviewed
CVE-2023-24509 was published Apr 13, 2023
OpenFeature Operator vulnerable to Cluster-level Privilege Escalation High
CVE-2023-29018 was published for github.com/open-feature/open-feature-operator (Go) Apr 12, 2023
younaman thisthat
bacherfl
Credited to younaman, thisthat, and bacherfl
A improper privilege management in Fortinet FortiSandbox version 4.2.0 through 4.2.2, 4.0.0... High Unreviewed
CVE-2022-27487 was published Apr 11, 2023
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could... High Unreviewed
CVE-2023-20655 was published Apr 6, 2023
An issue was discovered in Acuant AsureID Sentinel before 5.2.149. It allows elevation of... High Unreviewed
CVE-2022-48227 was published Apr 4, 2023
An issue was discovered in Acuant AcuFill SDK before 10.22.02.03. During installation, an EXE... High Unreviewed
CVE-2022-48226 was published Apr 4, 2023
thorsten/phpmyfaq vulnerable privilege escalation from improper privilege management High
CVE-2023-1762 was published for thorsten/phpmyfaq (Composer) Mar 31, 2023
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be... High Unreviewed
CVE-2023-0664 was published Mar 29, 2023
A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including... High Unreviewed
CVE-2017-6894 was published Mar 29, 2023
The directory-pro WordPress plugin before 1.9.5, final-user-wp-frontend-user-profiles WordPress... High Unreviewed
CVE-2020-36666 was published Mar 27, 2023
In (TBD) of (TBD), there is a possible way to boot with a hidden debug policy due to a missing... High Unreviewed
CVE-2023-21068 was published Mar 24, 2023
In captureImage of CustomizedSensor.cpp, there is a possible way to bypass the fingerprint unlock... High Unreviewed
CVE-2023-20995 was published Mar 24, 2023
Hippo4j privilege escalation issue High
CVE-2023-27094 was published for cn.hippo4j:hippo4j-all (Maven) Mar 23, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database