GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
869 advisories
Filter by severity
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E...
High
Unreviewed
CVE-2024-21153
was published
Jul 17, 2024
An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the...
High
Unreviewed
CVE-2019-16640
was published
Jul 16, 2024
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is...
High
Unreviewed
CVE-2024-6737
was published
Jul 15, 2024
Windows File Explorer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38100
was published
Jul 9, 2024
DCOM Remote Cross-Session Activation Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38061
was published
Jul 9, 2024
An improper access control in Fortinet FortiExtender 4.1.1 - 4.1.9, 4.2.0 - 4.2.6, 5.3.2, 7.0.0 -...
High
Unreviewed
CVE-2024-23663
was published
Jul 9, 2024
Robotmk before 2.0.1 allows a local user to escalate privileges (e.g., to SYSTEM) if automated...
High
Unreviewed
CVE-2024-39934
was published
Jul 4, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36989
was published
Jul 1, 2024
In lunary-ai/lunary version 1.2.4, an improper access control vulnerability allows members with...
High
Unreviewed
CVE-2024-5714
was published
Jun 27, 2024
An issue in Safe Exam Browser for Windows before 3.6 allows an attacker to share clipboard data...
High
Unreviewed
CVE-2024-37742
was published
Jun 26, 2024
Artery AT32F415CBT7 and AT32F421C8T7 devices have Incorrect Access Control.
High
Unreviewed
CVE-2024-21740
was published
Jun 25, 2024
An issue in Shenzhen Weitillage Industrial Co., Ltd the access management specialist V6.62.51215...
High
Unreviewed
CVE-2024-37677
was published
Jun 24, 2024
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect...
High
Unreviewed
CVE-2022-45929
was published
Jun 20, 2024
A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 ...
High
Unreviewed
CVE-2022-23829
was published
Jun 18, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa...
High
Unreviewed
CVE-2024-5650
was published
Jun 17, 2024
ColdFusion versions 2023u7, 2021u13 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-34112
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-26029
was published
Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos...
High
Unreviewed
CVE-2024-2698
was published
Jun 12, 2024
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to...
High
Unreviewed
CVE-2024-37289
was published
Jun 11, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2022-48683
was published
Jun 10, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically...
High
Unreviewed
CVE-2024-5126
was published
Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting...
High
Unreviewed
CVE-2024-5131
was published
Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including...
High
Unreviewed
CVE-2024-3504
was published
Jun 6, 2024
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,...
High
Unreviewed
CVE-2024-4520
was published
Jun 4, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
High
Unreviewed
CVE-2024-23360
was published
Jun 3, 2024
ProTip!
Advisories are also available from the
GraphQL API