Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

574 advisories

Loading
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing... High Unreviewed
CVE-2023-33990 was published Jul 11, 2023
When creating a journal entry template in SAP S/4HANA (Manage Journal Entry Template) - versions... High Unreviewed
CVE-2023-35870 was published Jul 11, 2023
Apache InLong vulnerable to Incorrect Permission Assignment for Critical Resource High
CVE-2023-31454 was published for org.apache.inlong:manager-service (Maven) Jul 6, 2023
Apache InLong Incorrect Permission Assignment for Critical Resource Vulnerability High
CVE-2023-31453 was published for org.apache.inlong:manager-service (Maven) Jul 6, 2023
Multiple vulnerabilities including an incorrect permission assignment for critical resource [CWE... High Unreviewed
CVE-2022-43946 was published Jul 6, 2023
An issue was discovered in Weblib Ucopia before 6.0.13. The SSH Server has Insecure Permissions. High Unreviewed
CVE-2022-44719 was published Jun 29, 2023
In Veritas NetBackup Appliance before 4.1.0.1 MR3, insecure permissions may allow an... High Unreviewed
CVE-2023-37237 was published Jun 29, 2023
An insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows... High Unreviewed
CVE-2023-29860 was published Jun 23, 2023
Apache Tomcat vulnerable to information leak High
CVE-2023-34981 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 21, 2023
sunSUNQ westonsteimel
Vulnerability of undefined permissions in HUAWEI VR screen projection.Successful exploitation of... High Unreviewed
CVE-2023-34154 was published Jun 16, 2023
IBM Security Directory Suite VA 8.0.1 specifies permissions for a security-critical resource in a... High Unreviewed
CVE-2022-33163 was published Jun 15, 2023
Insecure Temporary File in HuTool High
CVE-2023-33695 was published for cn.hutool:hutool-core (Maven) Jun 13, 2023
A vulnerability has been identified in SIMATIC WinCC (All versions < V7.5.2.13). Affected... High Unreviewed
CVE-2023-30897 was published Jun 13, 2023
Incorrect permission assignment for critical resource exists in CONPROSYS HMI System (CHS)... High Unreviewed
CVE-2023-28399 was published Jun 1, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote... High Unreviewed
CVE-2023-28346 was published May 31, 2023
Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via... High Unreviewed
CVE-2023-31874 was published May 29, 2023
Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local... High Unreviewed
CVE-2023-31748 was published May 24, 2023
The window management module lacks permission verification.Successful exploitation of this... High Unreviewed
CVE-2023-1692 was published May 20, 2023
Jenkins File Parameter Plugin arbitrary file write vulnerability High
CVE-2023-32986 was published for io.jenkins.plugins:file-parameters (Maven) May 16, 2023
Jenkins SAML Single Sign On(SSO) Plugin missing permission checks High
CVE-2023-32992 was published for io.jenkins.plugins:miniorange-saml-sp (Maven) May 16, 2023
Planet's secret file is created with excessive permissions High
CVE-2023-32303 was published for planet (pip) May 12, 2023
IBM API Connect V10 could allow an authenticated user to perform actions that they should not... High Unreviewed
CVE-2023-28522 was published May 12, 2023
Insecure inherited permissions in the Intel(R) NUC Software Studio Service installer before... High Unreviewed
CVE-2022-38103 was published May 10, 2023
Insecure inherited permissions for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may... High Unreviewed
CVE-2022-46656 was published May 10, 2023
Incorrect permission assignment for critical resource in some Intel(R) QAT drivers for Windows... High Unreviewed
CVE-2022-41699 was published May 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database