Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,838
Erlang
36
GitHub Actions
33
Go
2,460
Maven
5,000+
npm
4,082
NuGet
723
pip
3,873
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

591 advisories

Loading
A incorrect permission assignment for critical resource vulnerability in PLCnext products allows... High Unreviewed
CVE-2023-46142 was published Dec 14, 2023
SAP GUI for Windows and SAP GUI for Java - versions SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757,... High Unreviewed
CVE-2023-49580 was published Dec 12, 2023
An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. Insufficient permissions... High Unreviewed
CVE-2023-50446 was published Dec 10, 2023
Honeywell ProWatch, 4.5, including all Service Pack versions, contain a Vulnerability in... High Unreviewed
CVE-2023-6179 was published Nov 17, 2023
Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint... High Unreviewed
CVE-2023-28134 was published Nov 13, 2023
Sourcecodester Free and Open Source inventory management system v1.0 is vulnerable to Incorrect... High Unreviewed
CVE-2023-46449 was published Oct 26, 2023
SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To... High Unreviewed
CVE-2023-40361 was published Oct 20, 2023
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a vulnerability... High Unreviewed
CVE-2023-34437 was published Oct 19, 2023
Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities... High Unreviewed
CVE-2023-32724 was published Oct 12, 2023
A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.20). The... High Unreviewed
CVE-2023-45205 was published Oct 10, 2023
A vulnerability has been identified in SINEC NMS (All versions < V2.0). The affected application... High Unreviewed
CVE-2022-30527 was published Oct 10, 2023
Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0... High Unreviewed
CVE-2023-42189 was published Oct 10, 2023
A vulnerability in the session management system of the Cisco Catalyst SD-WAN Manager multi... High Unreviewed
CVE-2023-20254 was published Sep 27, 2023
Incorrect Execution-Assigned Permissions vulnerability in Saphira Saphira Connect allows... High Unreviewed
CVE-2023-4665 was published Sep 15, 2023
A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q3). The affected... High Unreviewed
CVE-2023-38557 was published Sep 14, 2023
Wacom Drivers for Windows Incorrect Permission Assignment Local Privilege Escalation... High Unreviewed
CVE-2023-32162 was published Sep 6, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5... High Unreviewed
CVE-2023-3915 was published Sep 1, 2023
In PHPJabbers Car Rental Script 3.0, lack of verification when changing an email address and/or... High Unreviewed
CVE-2023-40754 was published Aug 28, 2023
A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0... High Unreviewed
CVE-2023-4383 was published Aug 16, 2023
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file High Unreviewed
CVE-2023-4332 was published Aug 15, 2023
Insecure inherited permissions in some Intel(R) oneMKL software before version 2022.0 may allow... High Unreviewed
CVE-2023-28658 was published Aug 11, 2023
OPNsense before 23.7 was discovered to contain insecure permissions in the directory /tmp. High Unreviewed
CVE-2023-39003 was published Aug 9, 2023
Insecure permissions exist for configd.socket in OPNsense before 23.7. High Unreviewed
CVE-2023-39005 was published Aug 9, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). Affected... High Unreviewed
CVE-2022-39062 was published Aug 8, 2023
A vulnerability in the privilege management functionality of all Cisco BroadWorks server types... High Unreviewed
CVE-2023-20216 was published Aug 4, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database