Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111 advisories

Loading
There is elevation of privilege. Critical Unreviewed
CVE-2023-21216 was published Dec 5, 2023
Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker... Critical Unreviewed
CVE-2023-47462 was published Nov 29, 2023
Incorrect access control in the Forgot Your Password function of EMSigner v2.8.7 allows... Critical Unreviewed
CVE-2023-43902 was published Nov 14, 2023
TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure permissions... Critical Unreviewed
CVE-2022-42150 was published Oct 19, 2023
TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the ... Critical Unreviewed
CVE-2023-27133 was published Oct 17, 2023
A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured... Critical Unreviewed
CVE-2022-4039 was published Sep 22, 2023
An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control... Critical Unreviewed
CVE-2023-31068 was published Sep 11, 2023
An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control... Critical Unreviewed
CVE-2023-31067 was published Sep 11, 2023
TeleAdapt RoomCast TA-2400 1.0 through 3.1 is vulnerable to Improper Privilege Management: from... Critical Unreviewed
CVE-2023-33745 was published Jul 27, 2023
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device... Critical Unreviewed
CVE-2023-29131 was published Jul 11, 2023
Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote... Critical Unreviewed
CVE-2023-33282 was published Jun 7, 2023
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An... Critical Unreviewed
CVE-2023-31116 was published Jun 7, 2023
A privilege escalation allowing remote code execution was discovered in the orchestration service. Critical Unreviewed
CVE-2023-2530 was published Jun 7, 2023
SoLive 1.6.14 thru 1.6.20 for Android exists exposed component, the component provides the method... Critical Unreviewed
CVE-2023-29732 was published May 30, 2023
SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any file on the server can be... Critical Unreviewed
CVE-2023-29919 was published May 23, 2023
An issue was discovered in GeoVision GV-Edge Recording Manager 2.2.3.0 for windows, which... Critical Unreviewed
CVE-2023-23059 was published May 4, 2023
Rancher Webhook is misconfigured during upgrade process Critical
CVE-2023-22651 was published for github.com/rancher/rancher (Go) Apr 24, 2023
pjbgf
Diasoft File Replication Pro 7.5.0 allows attackers to escalate privileges by replacing a... Critical Unreviewed
CVE-2023-26918 was published Apr 14, 2023
An issue in ttyd v.1.6.3 allows attacker to execute arbitrary code via default configuration... Critical Unreviewed
CVE-2021-34182 was published Feb 17, 2023
A 2-Step Verification problem in Axigen 10.3.3.52 allows an attacker to access a mailbox by... Critical Unreviewed
CVE-2023-23566 was published Jan 13, 2023
A vulnerability has been found in trampgeek jobe up to 1.6.4 and classified as problematic. This... Critical Unreviewed
CVE-2021-4297 was published Jan 1, 2023
Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which... Critical Unreviewed
CVE-2021-3437 was published Dec 12, 2022
A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that... Critical Unreviewed
CVE-2022-27773 was published Dec 6, 2022
An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to... Critical Unreviewed
CVE-2022-44929 was published Dec 2, 2022
Weak File and Folder Permissions vulnerability in CLUSTERPRO X 5.0 for Windows and earlier,... Critical Unreviewed
CVE-2022-34824 was published Nov 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database