Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

866 advisories

Loading
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is... High Unreviewed
CVE-2024-6737 was published Jul 15, 2024
Windows File Explorer Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38100 was published Jul 9, 2024
DCOM Remote Cross-Session Activation Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38061 was published Jul 9, 2024
An improper access control in Fortinet FortiExtender 4.1.1 - 4.1.9, 4.2.0 - 4.2.6, 5.3.2, 7.0.0 -... High Unreviewed
CVE-2024-23663 was published Jul 9, 2024
Robotmk before 2.0.1 allows a local user to escalate privileges (e.g., to SYSTEM) if automated... High Unreviewed
CVE-2024-39934 was published Jul 4, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed
CVE-2024-36989 was published Jul 1, 2024
In lunary-ai/lunary version 1.2.4, an improper access control vulnerability allows members with... High Unreviewed
CVE-2024-5714 was published Jun 27, 2024
An issue in Safe Exam Browser for Windows before 3.6 allows an attacker to share clipboard data... High Unreviewed
CVE-2024-37742 was published Jun 26, 2024
Artery AT32F415CBT7 and AT32F421C8T7 devices have Incorrect Access Control. High Unreviewed
CVE-2024-21740 was published Jun 25, 2024
An issue in Shenzhen Weitillage Industrial Co., Ltd the access management specialist V6.62.51215... High Unreviewed
CVE-2024-37677 was published Jun 24, 2024
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect... High Unreviewed
CVE-2022-45929 was published Jun 20, 2024
A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 ... High Unreviewed
CVE-2022-23829 was published Jun 18, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa... High Unreviewed
CVE-2024-5650 was published Jun 17, 2024
ColdFusion versions 2023u7, 2021u13 and earlier are affected by an Improper Access Control... High Unreviewed
CVE-2024-34112 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control... High Unreviewed
CVE-2024-26029 was published Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos... High Unreviewed
CVE-2024-2698 was published Jun 12, 2024
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-37289 was published Jun 11, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2022-48683 was published Jun 10, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically... High Unreviewed
CVE-2024-5126 was published Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting... High Unreviewed
CVE-2024-5131 was published Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed
CVE-2024-3504 was published Jun 6, 2024
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,... High Unreviewed
CVE-2024-4520 was published Jun 4, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers. High Unreviewed
CVE-2024-23360 was published Jun 3, 2024
The mobile application (com.transsion.videocallenhancer) interface has improper permission... High Unreviewed
CVE-2024-4988 was published May 21, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users... High Unreviewed
CVE-2024-4151 was published May 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database