Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

114 advisories

Loading
A vulnerability in APIML Spring Cloud Gateway which leverages user privileges by unexpected... Critical Unreviewed
CVE-2024-6834 was published Jul 17, 2024
Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. ... High Unreviewed
CVE-2024-21184 was published Jul 17, 2024
Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, Spotfire Spotfire for AWS... Critical Unreviewed
CVE-2024-3330 was published Jun 27, 2024
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated... High Unreviewed
CVE-2024-20435 was published Jul 17, 2024
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has... High Unreviewed
CVE-2024-35154 was published Jul 10, 2024
The Toshiba printers do not implement privileges separation. As for the affected products/models... Moderate Unreviewed
CVE-2024-27146 was published Jun 14, 2024
Toshiba printers use SNMP for configuration. Using the private community, it is possible to... Critical Unreviewed
CVE-2024-27143 was published Jun 14, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed
CVE-2024-27147 was published Jun 14, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with... High Unreviewed
CVE-2023-46360 was published Feb 6, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.2 contain an execution with unnecessary... Moderate Unreviewed
CVE-2024-32853 was published Jul 2, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed
CVE-2023-30997 was published Jun 27, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed
CVE-2023-30998 was published Jun 27, 2024
In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed
CVE-2021-41035 was published May 24, 2022
IBM i 7.3, 7.4, and 7.5 product IBM TCP/IP Connectivity Utilities for i contains a local... High Unreviewed
CVE-2024-31890 was published Jun 21, 2024
Attackers can then execute malicious files by enabling certain services of the printer via the... High Unreviewed
CVE-2024-3498 was published Jun 14, 2024
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the... High Unreviewed
CVE-2024-0084 was published Jun 14, 2024
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate... High Unreviewed
CVE-2024-35142 was published May 31, 2024
IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a... High Unreviewed
CVE-2024-27260 was published May 16, 2024
Elevation of privilege vulnerability in GE HealthCare EchoPAC products High Unreviewed
CVE-2024-27110 was published May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an execution with unnecessary... Moderate Unreviewed
CVE-2024-25967 was published May 14, 2024
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed
CVE-2023-32486 was published Aug 16, 2023
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10147 was published May 24, 2022
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow... High Unreviewed
CVE-2023-27313 was published Oct 12, 2023
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a... Moderate Unreviewed
CVE-2023-27312 was published Oct 12, 2023
One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access... Moderate Unreviewed
CVE-2023-4003 was published Sep 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database