GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
868 advisories
Filter by severity
An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel...
High
Unreviewed
CVE-2024-42772
was published
Aug 22, 2024
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain read access to almost the whole...
High
Unreviewed
CVE-2024-36443
was published
Aug 22, 2024
Improper Access Controls allows backend users to overwrite their username when disallowed.
High
Unreviewed
CVE-2024-27187
was published
Aug 20, 2024
Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may...
High
Unreviewed
CVE-2024-26022
was published
Aug 14, 2024
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow...
High
Unreviewed
CVE-2024-25576
was published
Aug 14, 2024
Windows Update Stack Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38163
was published
Aug 14, 2024
Azure CycleCloud Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38195
was published
Aug 13, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38162
was published
Aug 13, 2024
Insufficient
validation of the Input Output Control (IOCTL) input buffer in AMD μProf may
allow...
High
Unreviewed
CVE-2023-31341
was published
Aug 13, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-41905
was published
Aug 13, 2024
A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege...
High
Unreviewed
CVE-2024-7557
was published
Aug 12, 2024
Improper access control vulnerability affecting Vonets
industrial wifi bridge relays and wifi...
High
Unreviewed
CVE-2024-29082
was published
Aug 12, 2024
Summary
Microsoft was notified that an elevation of privilege vulnerability exists in Windows...
High
Unreviewed
CVE-2024-38202
was published
Aug 8, 2024
An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the...
High
Unreviewed
CVE-2024-41308
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara...
High
Unreviewed
CVE-2024-41249
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa...
High
Unreviewed
CVE-2024-41248
was published
Aug 7, 2024
An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape...
High
Unreviewed
CVE-2024-41309
was published
Aug 7, 2024
Incorrect validation of files loaded from a local untrusted directory may allow local privilege...
High
Unreviewed
CVE-2024-7553
was published
Aug 7, 2024
An issue in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v.402.072 allows a remote...
High
Unreviewed
CVE-2024-40531
was published
Aug 5, 2024
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify...
High
Unreviewed
CVE-2024-33027
was published
Aug 5, 2024
An Incorrect Access Control vulnerability in "/admin/programm/<program_id>/export/statistics" in...
High
Unreviewed
CVE-2024-41518
was published
Aug 2, 2024
Insecure permissions in kuma v2.7.0 allows attackers to access sensitive data and escalate...
High
Unreviewed
CVE-2024-36542
was published
Jul 25, 2024
Insecure permissions in cert-manager v1.14.4 allows attackers to access sensitive data and...
High
Unreviewed
CVE-2024-36537
was published
Jul 24, 2024
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E...
High
Unreviewed
CVE-2024-21153
was published
Jul 17, 2024
ProTip!
Advisories are also available from the
GraphQL API