GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,482
NuGet
605
pip
3,050
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,952 advisories
Filter by severity
Improper Privilege Management vulnerability in Pandora FMS on all allows Privilege Escalation....
High
Unreviewed
CVE-2023-41806
was published
Nov 23, 2023
APM Java Agent Local Privilege Escalation issue
High
CVE-2021-37942
was published
for
co.elastic.apm:apm-agent-parent
(Maven)
Nov 22, 2023
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an...
High
Unreviewed
CVE-2023-43591
was published
Nov 15, 2023
Insufficient protections in System Management Mode (SMM) code may allow an attacker to...
High
Unreviewed
CVE-2023-20565
was published
Nov 14, 2023
Insufficient protections in System Management Mode (SMM) code may allow an attacker to...
High
Unreviewed
CVE-2023-20563
was published
Nov 14, 2023
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love...
High
Unreviewed
CVE-2023-6099
was published
Nov 13, 2023
A CWE-269: Improper Privilege Management vulnerability exists in Telit Cinterion BGS5, Telit...
High
Unreviewed
CVE-2023-47611
was published
Nov 10, 2023
The multi-screen interaction module has a vulnerability in permission management. Successful...
High
Unreviewed
CVE-2023-46758
was published
Nov 8, 2023
In versions of FreeBSD 13-RELEASE before 13-RELEASE-p5, under certain circumstances the cap_net...
High
Unreviewed
CVE-2023-5978
was published
Nov 8, 2023
Security vulnerability in the face unlock module. Successful exploitation of this vulnerability...
High
Unreviewed
CVE-2023-46771
was published
Nov 8, 2023
A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes...
High
Unreviewed
CVE-2023-5408
was published
Nov 2, 2023
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege...
High
Unreviewed
CVE-2023-40686
was published
Oct 29, 2023
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege...
High
Unreviewed
CVE-2023-40685
was published
Oct 29, 2023
A privilege elevation vulnerability was reported in the Lenovo Vantage SystemUpdate plugin...
High
Unreviewed
CVE-2022-3701
was published
Oct 27, 2023
A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI...
High
Unreviewed
CVE-2023-44219
was published
Oct 27, 2023
VMware Tools contains a local privilege escalation vulnerability. A malicious actor with local...
High
Unreviewed
CVE-2023-34057
was published
Oct 27, 2023
The application suffers from a privilege escalation vulnerability. A
user with read...
High
Unreviewed
CVE-2023-41966
was published
Oct 26, 2023
Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate...
High
Unreviewed
CVE-2023-5622
was published
Oct 26, 2023
An authenticated XCC user can change permissions for any user through a crafted API command.
High
Unreviewed
CVE-2023-4607
was published
Oct 25, 2023
SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN...
High
Unreviewed
CVE-2023-41715
was published
Oct 18, 2023
Backup, Recovery, and Media Services (BRMS) for IBM i 7.2, 7.3, and 7.4 contains a local...
High
Unreviewed
CVE-2023-40377
was published
Oct 16, 2023
IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to...
High
Unreviewed
CVE-2023-38280
was published
Oct 16, 2023
IBM Directory Server for IBM i contains a local privilege escalation vulnerability. A malicious...
High
Unreviewed
CVE-2023-40378
was published
Oct 15, 2023
SnapCenter versions 4.8 through 4.9 are susceptible to a
vulnerability which may allow an...
High
Unreviewed
CVE-2023-27316
was published
Oct 13, 2023
An issue in Inspect Element Ltd Echo.ac v.5.2.1.0 allows a local attacker to gain privileges via...
High
Unreviewed
CVE-2023-38817
was published
Oct 11, 2023
ProTip!
Advisories are also available from the
GraphQL API