Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,482
NuGet
605
pip
3,050
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,952 advisories

Improper Privilege Management vulnerability in Pandora FMS on all allows Privilege Escalation.... High Unreviewed
CVE-2023-41806 was published Nov 23, 2023
APM Java Agent Local Privilege Escalation issue High
CVE-2021-37942 was published for co.elastic.apm:apm-agent-parent (Maven) Nov 22, 2023
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an... High Unreviewed
CVE-2023-43591 was published Nov 15, 2023
Insufficient protections in System Management Mode (SMM) code may allow an attacker to... High Unreviewed
CVE-2023-20565 was published Nov 14, 2023
Insufficient protections in System Management Mode (SMM) code may allow an attacker to... High Unreviewed
CVE-2023-20563 was published Nov 14, 2023
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love... High Unreviewed
CVE-2023-6099 was published Nov 13, 2023
A CWE-269: Improper Privilege Management vulnerability exists in Telit Cinterion BGS5, Telit... High Unreviewed
CVE-2023-47611 was published Nov 10, 2023
The multi-screen interaction module has a vulnerability in permission management. Successful... High Unreviewed
CVE-2023-46758 was published Nov 8, 2023
In versions of FreeBSD 13-RELEASE before 13-RELEASE-p5, under certain circumstances the cap_net... High Unreviewed
CVE-2023-5978 was published Nov 8, 2023
Security vulnerability in the face unlock module. Successful exploitation of this vulnerability... High Unreviewed
CVE-2023-46771 was published Nov 8, 2023
A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes... High Unreviewed
CVE-2023-5408 was published Nov 2, 2023
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege... High Unreviewed
CVE-2023-40686 was published Oct 29, 2023
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege... High Unreviewed
CVE-2023-40685 was published Oct 29, 2023
A privilege elevation vulnerability was reported in the Lenovo Vantage SystemUpdate plugin... High Unreviewed
CVE-2022-3701 was published Oct 27, 2023
A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI... High Unreviewed
CVE-2023-44219 was published Oct 27, 2023
VMware Tools contains a local privilege escalation vulnerability. A malicious actor with local... High Unreviewed
CVE-2023-34057 was published Oct 27, 2023
The application suffers from a privilege escalation vulnerability. A user with read... High Unreviewed
CVE-2023-41966 was published Oct 26, 2023
Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate... High Unreviewed
CVE-2023-5622 was published Oct 26, 2023
An authenticated XCC user can change permissions for any user through a crafted API command. High Unreviewed
CVE-2023-4607 was published Oct 25, 2023
SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN... High Unreviewed
CVE-2023-41715 was published Oct 18, 2023
Backup, Recovery, and Media Services (BRMS) for IBM i 7.2, 7.3, and 7.4 contains a local... High Unreviewed
CVE-2023-40377 was published Oct 16, 2023
IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to... High Unreviewed
CVE-2023-38280 was published Oct 16, 2023
IBM Directory Server for IBM i contains a local privilege escalation vulnerability. A malicious... High Unreviewed
CVE-2023-40378 was published Oct 15, 2023
SnapCenter versions 4.8 through 4.9 are susceptible to a vulnerability which may allow an... High Unreviewed
CVE-2023-27316 was published Oct 13, 2023
An issue in Inspect Element Ltd Echo.ac v.5.2.1.0 allows a local attacker to gain privileges via... High Unreviewed
CVE-2023-38817 was published Oct 11, 2023
ProTip! Advisories are also available from the GraphQL API