GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,512
Composer 4,179
Erlang 31
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 233,001

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

95 advisories

Filter by severity

Sort by

Least recently updated

The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this... High Unreviewed

CVE-2022-48295 was published Feb 9, 2023

The bundle management module lacks permission verification in some APIs. Successful exploitation... High Unreviewed

CVE-2022-48301 was published Feb 9, 2023

An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web... High Unreviewed

CVE-2020-18329 was published Jan 26, 2023

A cross-origin iframe referencing an XSLT document would inherit the parent domain's permissions ... High Unreviewed

CVE-2022-38473 was published Dec 22, 2022

NVIDIA GPU Display Driver for Linux contains a vulnerability in an optional D-Bus configuration... High Unreviewed

CVE-2022-31608 was published Nov 19, 2022

A vulnerability in Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and... High Unreviewed

CVE-2021-45446 was published Nov 2, 2022

The MSI installer in Verint Desktop Resources 15.2 allows an unprivileged local user to elevate... High Unreviewed

CVE-2020-12744 was published Oct 20, 2022

A flaw was found in the RHDM, where an authenticated attacker can change their assigned role in... High Unreviewed

CVE-2019-14841 was published Oct 17, 2022

ProcessMaker before v3.5.4 was discovered to contain insecure permissions in the user profile... High Unreviewed

CVE-2022-38577 was published Sep 20, 2022

A flaw was found in satellite. When giving granular permission related to the organization, other... High Unreviewed

CVE-2021-3414 was published Aug 27, 2022

An exploitable local privilege escalation vulnerability exists in GOG Galaxy 2.0.46. Due to... High Unreviewed

CVE-2022-31262 was published Aug 18, 2022

IBM Spectrum Protect Plus Container Backup and Restore (10.1.5 through 10.1.10.2 for Kubernetes... High Unreviewed

CVE-2022-22472 was published Jul 1, 2022

eG Agent before 7.2 has weak file permissions that enable escalation of privileges to SYSTEM. High Unreviewed

CVE-2022-29594 was published Jun 3, 2022

A permissions issue existed. This issue was addressed with improved permission validation. This... High Unreviewed

CVE-2021-30827 was published May 24, 2022

An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service... High Unreviewed

CVE-2021-32465 was published May 24, 2022

Acronis True Image for Mac before 2021 Update 4 allowed local privilege escalation due to... High Unreviewed

CVE-2020-15496 was published May 24, 2022

Battle.net.exe in Battle.Net 1.27.1.12428 suffers from an elevation of privileges vulnerability... High Unreviewed

CVE-2020-27383 was published May 24, 2022

Insecure inherited permissions in the installer for the Intel(R) VTune(TM) Profiler before... High Unreviewed

CVE-2021-0077 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Computing Improvement Program software... High Unreviewed

CVE-2021-0074 was published May 24, 2022

In JetBrains UpSource before 2020.1.1883, application passwords were not revoked correctly High Unreviewed

CVE-2021-30482 was published May 24, 2022

Improper preservation of permissions in Nagios XI 5.7.4 allows a local, low-privileged,... High Unreviewed

CVE-2020-5796 was published May 24, 2022

Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an... High Unreviewed

CVE-2020-24525 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Advisor tools before version 2020 Update 2... High Unreviewed

CVE-2020-12334 was published May 24, 2022

Improper permissions in the installer for the Intel(R) HID Event Filter Driver, all versions, may... High Unreviewed

CVE-2020-12332 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Falcon 8+ UAS AscTec Thermal Viewer, all... High Unreviewed

CVE-2020-12330 was published May 24, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

95 advisories