Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

987 advisories

Loading
In lunary-ai/lunary v1.5.0, improper privilege management in the models.ts file allows users with... Moderate Unreviewed
CVE-2024-10273 was published Mar 20, 2025
Improper Privilege Management vulnerability for users configured as Shared Accounts in Progress... Moderate Unreviewed
CVE-2025-2324 was published Mar 19, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... Moderate Unreviewed
CVE-2024-48828 was published Mar 17, 2025
An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix... Moderate Unreviewed
CVE-2025-25872 was published Mar 14, 2025
An issue in SoundCloud IOS application v.7.65.2 allows a local attacker to escalate privileges... Moderate Unreviewed
CVE-2024-57062 was published Mar 13, 2025
Xerox Desktop Print Experience application contains a Local Privilege Escalation (LPE)... Moderate Unreviewed
CVE-2025-1984 was published Mar 12, 2025
Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate... Moderate Unreviewed
CVE-2025-21199 was published Mar 11, 2025
Improper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This... Moderate Unreviewed
CVE-2025-26705 was published Mar 11, 2025
Improper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This... Moderate Unreviewed
CVE-2025-26704 was published Mar 11, 2025
Improper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This... Moderate Unreviewed
CVE-2025-26706 was published Mar 11, 2025
Improper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This... Moderate Unreviewed
CVE-2025-26703 was published Mar 11, 2025
Improper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This... Moderate Unreviewed
CVE-2025-26707 was published Mar 11, 2025
A logic issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18,... Moderate Unreviewed
CVE-2024-54560 was published Mar 10, 2025
Test CVE description Moderate Unreviewed
CVE-2025-1121 was published Mar 7, 2025
A Sudo privilege misconfiguration vulnerability in PocketBook InkPad Color 3 on Linux, ARM allows... Moderate Unreviewed
CVE-2025-1425 was published Mar 4, 2025
Apache StreamPipes has improper privilege management in a REST interface Moderate
CVE-2024-24778 was published for org.apache.streampipes:streampipes-parent (Maven) Mar 3, 2025
HCL MyCloud is affected by Improper Access Control - an unauthenticated privilege escalation... Moderate Unreviewed
CVE-2024-30150 was published Feb 26, 2025
IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4... Moderate Unreviewed
CVE-2024-22341 was published Feb 22, 2025
An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate... Moderate Unreviewed
CVE-2024-57778 was published Feb 14, 2025
Ash Authentication has flawed token revocation checking logic in actions generated by `mix ash_authentication.install` Moderate
CVE-2025-25202 was published for ash_authentication (Erlang) Feb 11, 2025
wilburyang zachdaniel
jimsynz
Credited to wilburyang, zachdaniel, and jimsynz
VMware Aria Operations for Logs contains a privilege escalation vulnerability. A malicious actor... Moderate Unreviewed
CVE-2025-22220 was published Jan 30, 2025
Directus allows privilege escalation using Share feature Moderate
CVE-2025-24353 was published for @directus/app (npm) Jan 23, 2025
viters m3t3kh4n
Credited to viters and m3t3kh4n
Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File... Moderate Unreviewed
CVE-2025-0651 was published Jan 22, 2025
In versions 1.0.67 and lower of the Splunk App for SOAR, the Splunk documentation for that app... Moderate Unreviewed
CVE-2025-22621 was published Jan 7, 2025
An issue exists in SoftIron HyperCloud where authenticated, but non-admin users can create data... Moderate Unreviewed
CVE-2024-13058 was published Dec 31, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database