GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,438
Erlang
29
GitHub Actions
16
Go
1,663
Maven
4,922
npm
3,450
NuGet
594
pip
2,853
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,999 advisories
Filter by severity
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic...
Unknown
Unreviewed
CVE-2024-20021
was published
May 6, 2024
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on
Windows64 bit and 32...
High
Unreviewed
CVE-2023-7241
was published
May 1, 2024
The anti-tampering functionality of the Zscaler Client Connector can be disabled under certain...
High
Unreviewed
CVE-2024-23457
was published
May 1, 2024
In vulnerable versions of Calico (v3.27.2 and below), Calico Enterprise (v3.19.0-1, v3.18.1, v3...
Moderate
Unreviewed
CVE-2024-33522
was published
Apr 30, 2024
Privilege Escalation in kubevirt
Critical
CVE-2020-14316
was published
for
kubevirt.io/kubevirt
(Go)
Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows...
Critical
Unreviewed
CVE-2023-51425
was published
Apr 24, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ...
High
Unreviewed
CVE-2024-4018
was published
Apr 19, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ...
High
Unreviewed
CVE-2024-4017
was published
Apr 19, 2024
An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server that...
Moderate
Unreviewed
CVE-2024-3470
was published
Apr 19, 2024
ONTAP Select Deploy administration utility versions 9.12.1.x,
9.13.1.x and 9.14.1.x are...
High
Unreviewed
CVE-2024-21989
was published
Apr 17, 2024
AWS Amplify CLI has incorrect trust policy management
High
CVE-2024-28056
was published
for
@aws-amplify/cli
(npm)
Apr 15, 2024
Dusk plugin may allow unfettered user authentication in misconfigured installs
High
CVE-2024-32003
was published
for
winter/wn-dusk-plugin
(Composer)
Apr 12, 2024
A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an...
Moderate
Unreviewed
CVE-2024-3388
was published
Apr 10, 2024
Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5...
Moderate
Unreviewed
CVE-2024-27247
was published
Apr 9, 2024
Improper privilege management in the installer for Zoom Desktop Client for Windows before version...
Moderate
Unreviewed
CVE-2024-24694
was published
Apr 9, 2024
Windows Storage Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29052
was published
Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28904
was published
Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28905
was published
Apr 9, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21324
was published
Apr 9, 2024
NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause...
High
Unreviewed
CVE-2024-0082
was published
Apr 9, 2024
Permission verification vulnerability in the system module.
Impact: Successful exploitation of...
Unknown
Unreviewed
CVE-2023-52543
was published
Apr 8, 2024
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module...
Unknown
Unreviewed
CVE-2023-52716
was published
Apr 7, 2024
Improper Privilege Management vulnerability in ExtremePacs Extreme XDS allows Collect Data as...
High
Unreviewed
CVE-2023-6522
was published
Apr 5, 2024
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid...
Moderate
Unreviewed
CVE-2024-20282
was published
Apr 3, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management...
High
Unreviewed
CVE-2024-0172
was published
Apr 3, 2024
ProTip!
Advisories are also available from the
GraphQL API