Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,822 advisories

Loading
An issue in spidernet-io spiderpool v.0.9.3 and before allows a local attacker to execute... Moderate Unreviewed
CVE-2024-33393 was published May 1, 2024
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32... High Unreviewed
CVE-2023-7241 was published May 1, 2024
The anti-tampering functionality of the Zscaler Client Connector can be disabled under certain... High Unreviewed
CVE-2024-23457 was published May 1, 2024
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to... Critical Unreviewed
CVE-2024-33775 was published May 1, 2024
An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote... Critical Unreviewed
CVE-2024-33308 was published Apr 30, 2024
Calico privilege escalation vulnerability High
CVE-2024-33522 was published for github.com/projectcalico/calico (Go) Apr 30, 2024
An issue in SUPERAntiSyware Professional X 10.0.1262 and 10.0.1264 allows unprivileged attackers... High Unreviewed
CVE-2024-27518 was published Apr 29, 2024
By default, SANnav OVA is shipped with root user login enabled. While protected by a password,... Moderate Unreviewed
CVE-2024-2859 was published Apr 27, 2024
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create... Critical Unreviewed
CVE-2024-25343 was published Apr 26, 2024
An issue in Insurance Management System v.1.0.0 and before allows a remote attacker to escalate... High Unreviewed
CVE-2024-31502 was published Apr 26, 2024
Privilege Escalation in kubevirt Critical
CVE-2020-14316 was published for kubevirt.io/kubevirt (Go) Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows... Critical Unreviewed
CVE-2023-51425 was published Apr 24, 2024
Certain software builds for the TCL 20XE Android device contain a vulnerable, pre-installed app... High Unreviewed
CVE-2023-38292 was published Apr 22, 2024
An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2024-32418 was published Apr 22, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ... High Unreviewed
CVE-2024-4018 was published Apr 19, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ... High Unreviewed
CVE-2024-4017 was published Apr 19, 2024
An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server that... Moderate Unreviewed
CVE-2024-3470 was published Apr 19, 2024
ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x are... High Unreviewed
CVE-2024-21989 was published Apr 17, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2024-21121 was published Apr 17, 2024
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component:... Moderate Unreviewed
CVE-2024-21118 was published Apr 17, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2024-21111 was published Apr 17, 2024
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). ... Low Unreviewed
CVE-2024-21101 was published Apr 17, 2024
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). The... High Unreviewed
CVE-2024-21059 was published Apr 17, 2024
Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E... Moderate Unreviewed
CVE-2024-21034 was published Apr 17, 2024
AWS Amplify CLI has incorrect trust policy management Critical
CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database