Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,422 advisories

Loading
An issue was discovered in Veritas NetBackup before 8.3.0.2. BPCD allows an unprivileged user to... High Unreviewed
CVE-2023-28758 was published Mar 23, 2023
IBM QRadar SIEM 7.4 and 7.5 is vulnerable to privilege escalation, allowing a user with some... High Unreviewed
CVE-2022-43863 was published Mar 23, 2023
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux... High Unreviewed
CVE-2023-25590 was published Mar 22, 2023
An issue found in Ofcms v.1.1.4 allows a remote attacker to to escalate privileges via the respwd... High Unreviewed
CVE-2023-24760 was published Mar 16, 2023
OpenDoas through 6.8.2, when TIOCSTI is available, allows privilege escalation because of sharing... High Unreviewed
CVE-2023-28339 was published Mar 14, 2023
Company admin role gives excessive privileges in eZ Platform Ibexa High
CVE-2022-48365 was published for ezsystems/ezplatform-kernel (Composer) Mar 12, 2023
An improper access control vulnerability in the Trend Micro Apex One agent could allow a local... High Unreviewed
CVE-2023-25144 was published Mar 10, 2023
A improper privilege management in Fortinet FortiNAC version 9.4.0 through 9.4.1, FortiNAC... High Unreviewed
CVE-2022-39953 was published Mar 7, 2023
systemd before 247 does not adequately block local privilege escalation for some Sudo... High Unreviewed
CVE-2023-26604 was published Mar 3, 2023
starsoftcomm CooCare 5.304 allows local attackers to escalate privileges and execute arbitrary... High Unreviewed
CVE-2022-45988 was published Mar 3, 2023
An issue was discovered in ThingsBoard 3.4.1, allows low privileged attackers (CUSTOMER_USER) to... High Unreviewed
CVE-2022-45608 was published Mar 1, 2023
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2023-23497 was published Feb 27, 2023
This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7... High Unreviewed
CVE-2022-32949 was published Feb 27, 2023
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey... High Unreviewed
CVE-2022-32900 was published Feb 27, 2023
ThingsBoard 3.4.1 could allow a remote authenticated attacker to achieve Vertical Privilege... High Unreviewed
CVE-2022-48341 was published Feb 23, 2023
IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to information Disclosure... High Unreviewed
CVE-2022-43927 was published Feb 17, 2023
A vulnerability has been identified that, if exploited, could result in a local user elevating... High Unreviewed
CVE-2023-24483 was published Feb 16, 2023
ASUS EC Tool driver (aka d.sys) 1beb15c90dcf7a5234ed077833a0a3e900969b60be1d04fcebce0a9f8994bdbb,... High Unreviewed
CVE-2022-42455 was published Feb 15, 2023
Privilege escalation in Apache ShenYu High
CVE-2022-42735 was published for org.apache.shenyu:shenyu-admin (Maven) Feb 15, 2023
PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a... High Unreviewed
CVE-2023-25011 was published Feb 15, 2023
Azure App Service on Azure Stack Hub Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-21777 was published Feb 14, 2023
Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial ... High Unreviewed
CVE-2022-34384 was published Feb 11, 2023
Improper Handling of Insufficient Permissions or Privileges vulnerability in... High Unreviewed
CVE-2023-21421 was published Feb 9, 2023
The multi-screen collaboration module has a privilege escalation vulnerability. Successful... High Unreviewed
CVE-2022-48286 was published Feb 9, 2023
IBM Cloud Pak for Multicloud Management Monitoring 2.0 and 2.3 allows users without admin roles... High Unreviewed
CVE-2022-42438 was published Feb 8, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database