Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,422 advisories

Loading
An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which... High Unreviewed
CVE-2022-38777 was published Feb 8, 2023
The components wfshbr64.sys and wfshbr32.sys in Another Eden before v3.0.20 and before v2.14.200... High Unreviewed
CVE-2022-48019 was published Feb 6, 2023
VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with... High Unreviewed
CVE-2023-20854 was published Feb 3, 2023
An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable... High Unreviewed
CVE-2020-24307 was published Feb 2, 2023
Potential security vulnerabilities have been identified in the BIOS (UEFI Firmware) for certain... High Unreviewed
CVE-2021-3808 was published Feb 1, 2023
Potential security vulnerabilities have been identified in the BIOS (UEFI Firmware) for certain... High Unreviewed
CVE-2021-3809 was published Feb 1, 2023
HPSFViewer might allow Escalation of Privilege. This potential vulnerability was remediated on... High Unreviewed
CVE-2022-3990 was published Feb 1, 2023
HP has identified a potential vulnerability in BIOS firmware of some Workstation products.... High Unreviewed
CVE-2021-3439 was published Feb 1, 2023
Potential security vulnerabilities have been identified in HP Support Assistant. These... High Unreviewed
CVE-2022-23455 was published Feb 1, 2023
Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows... High Unreviewed
CVE-2022-4041 was published Jan 31, 2023
Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows... High Unreviewed
CVE-2022-4441 was published Jan 31, 2023
Potential vulnerabilities have been identified in HP Security Manager which may allow escalation... High Unreviewed
CVE-2022-46357 was published Jan 30, 2023
Potential vulnerabilities have been identified in HP Security Manager which may allow escalation... High Unreviewed
CVE-2022-46359 was published Jan 30, 2023
Potential vulnerabilities have been identified in HP Security Manager which may allow escalation... High Unreviewed
CVE-2022-46358 was published Jan 30, 2023
Potential vulnerabilities have been identified in HP Security Manager which may allow escalation... High Unreviewed
CVE-2022-46356 was published Jan 30, 2023
An issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic... High Unreviewed
CVE-2022-38774 was published Jan 26, 2023
An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which... High Unreviewed
CVE-2022-38775 was published Jan 26, 2023
Incorrect access control in Aternity agent in Riverbed Aternity before 12.1.4.27 allows for local... High Unreviewed
CVE-2022-43997 was published Jan 26, 2023
Privilege escalation in project role template binding (PRTB) and -promoted roles High
CVE-2022-43759 was published for github.com/rancher/rancher (Go) Jan 25, 2023
A privilege escalation vulnerability was identified in Nessus versions 8.10.1 through 8.15.8 and... High Unreviewed
CVE-2023-0101 was published Jan 20, 2023
In ModSecurity before 2.9.6 and 3.x before 3.0.8, HTTP multipart requests were incorrectly parsed... High Unreviewed
CVE-2022-48279 was published Jan 20, 2023
Symantec Endpoint Protection, prior to 14.3 RU6 (14.3.9210.6000), may be susceptible to a... High Unreviewed
CVE-2022-25631 was published Jan 20, 2023
Use of default credentials vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier... High Unreviewed
CVE-2023-22331 was published Jan 20, 2023
Velociraptor vulnerable to Missing Authorization High
CVE-2023-0242 was published for www.velocidex.com/golang/velociraptor (Go) Jan 18, 2023
In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the... High Unreviewed
CVE-2023-22809 was published Jan 18, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database