GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
1,201 advisories
Filter by severity
Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an...
High
Unreviewed
CVE-2023-28065
was published
Jun 23, 2023
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain...
High
Unreviewed
CVE-2023-28071
was published
Jun 23, 2023
The Firefox updater created a directory writable by non-privileged users. When uninstalling...
Moderate
Unreviewed
CVE-2023-4052
was published
Aug 1, 2023
A website could have obscured the full screen notification by using a URL with a scheme handled...
Moderate
Unreviewed
CVE-2023-4053
was published
Aug 1, 2023
An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for...
Critical
Unreviewed
CVE-2023-39107
was published
Aug 4, 2023
UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains.
High
Unreviewed
CVE-2022-48579
was published
Aug 7, 2023
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a...
High
Unreviewed
CVE-2019-13689
was published
Aug 25, 2023
A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux...
High
Unreviewed
CVE-2023-32182
was published
Sep 19, 2023
Zscaler Client Connector for Windows before 4.1 writes/deletes a configuration file inside...
High
Unreviewed
CVE-2023-28797
was published
Oct 23, 2023
Windows Authentication Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21447
was published
Apr 9, 2024
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26216
was published
Apr 9, 2024
Microsoft Install Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26158
was published
Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28907
was published
Apr 9, 2024
Azure Monitor Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29989
was published
Apr 9, 2024
The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster scripts, as distributed in the...
Moderate
Unreviewed
CVE-2017-8806
was published
May 17, 2022
rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink...
High
Unreviewed
CVE-2010-2064
was published
Apr 21, 2022
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service agent could...
Moderate
Unreviewed
CVE-2023-32556
was published
Jun 27, 2023
Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files...
High
Unreviewed
CVE-2019-19191
was published
May 24, 2022
An issue was discovered in TechView LA-5570 Wireless Gateway 1.0.19_T53, allows attackers to gain...
High
Unreviewed
CVE-2023-34723
was published
Aug 26, 2023
Visual Studio Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-20656
was published
Jan 9, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21329
was published
Feb 13, 2024
Windows Update Stack Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21432
was published
Mar 12, 2024
Microsoft Office Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26199
was published
Mar 12, 2024
Xbox Gaming Services Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28916
was published
Mar 21, 2024
Microsoft Azure File Sync Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-21397
was published
Feb 13, 2024
ProTip!
Advisories are also available from the
GraphQL API