Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,438
Erlang
29
GitHub Actions
16
Go
1,663
Maven
4,922
npm
3,450
NuGet
594
pip
2,853
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

2,999 advisories

In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic... Unknown Unreviewed
CVE-2024-20021 was published May 6, 2024
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32... High Unreviewed
CVE-2023-7241 was published May 1, 2024
The anti-tampering functionality of the Zscaler Client Connector can be disabled under certain... High Unreviewed
CVE-2024-23457 was published May 1, 2024
In vulnerable versions of Calico (v3.27.2 and below), Calico Enterprise (v3.19.0-1, v3.18.1, v3... Moderate Unreviewed
CVE-2024-33522 was published Apr 30, 2024
Privilege Escalation in kubevirt Critical
CVE-2020-14316 was published for kubevirt.io/kubevirt (Go) Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows... Critical Unreviewed
CVE-2023-51425 was published Apr 24, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ... High Unreviewed
CVE-2024-4018 was published Apr 19, 2024
Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit ... High Unreviewed
CVE-2024-4017 was published Apr 19, 2024
An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server that... Moderate Unreviewed
CVE-2024-3470 was published Apr 19, 2024
ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x are... High Unreviewed
CVE-2024-21989 was published Apr 17, 2024
AWS Amplify CLI has incorrect trust policy management High
CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024
Dusk plugin may allow unfettered user authentication in misconfigured installs High
CVE-2024-32003 was published for winter/wn-dusk-plugin (Composer) Apr 12, 2024
bennothommo
A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an... Moderate Unreviewed
CVE-2024-3388 was published Apr 10, 2024
Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5... Moderate Unreviewed
CVE-2024-27247 was published Apr 9, 2024
Improper privilege management in the installer for Zoom Desktop Client for Windows before version... Moderate Unreviewed
CVE-2024-24694 was published Apr 9, 2024
Windows Storage Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-29052 was published Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-28904 was published Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-28905 was published Apr 9, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21324 was published Apr 9, 2024
NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause... High Unreviewed
CVE-2024-0082 was published Apr 9, 2024
Permission verification vulnerability in the system module. Impact: Successful exploitation of... Unknown Unreviewed
CVE-2023-52543 was published Apr 8, 2024
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module... Unknown Unreviewed
CVE-2023-52716 was published Apr 7, 2024
Improper Privilege Management vulnerability in ExtremePacs Extreme XDS allows Collect Data as... High Unreviewed
CVE-2023-6522 was published Apr 5, 2024
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid... Moderate Unreviewed
CVE-2024-20282 was published Apr 3, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management... High Unreviewed
CVE-2024-0172 was published Apr 3, 2024
ProTip! Advisories are also available from the GraphQL API