GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
95 advisories
Filter by severity
A permission leak could have occurred from a trusted site to an untrusted site via `embed` or ...
High
Unreviewed
CVE-2024-10458
was published
Oct 29, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-44149
was published
Sep 17, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-27795
was published
Sep 17, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-40770
was published
Sep 17, 2024
In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin...
High
Unreviewed
CVE-2024-23464
was published
Aug 6, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-40821
was published
Jul 30, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 10...
High
Unreviewed
CVE-2024-40805
was published
Jul 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app...
High
Unreviewed
CVE-2024-40811
was published
Jul 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS...
High
Unreviewed
CVE-2024-40828
was published
Jul 30, 2024
An input validation issue was addressed with improved input validation. This issue is fixed in...
High
Unreviewed
CVE-2024-40800
was published
Jul 30, 2024
This issue was addressed through improved state management. This issue is fixed in watchOS 10.6,...
High
Unreviewed
CVE-2024-40824
was published
Jul 30, 2024
A permissions issue was addressed by removing vulnerable code and adding additional checks. This...
High
Unreviewed
CVE-2024-27888
was published
Jul 30, 2024
There is an unauthorized access vulnerability in ZTE H388X. If H388X is caused by brute-force...
High
Unreviewed
CVE-2023-25646
was published
Jun 20, 2024
When installing Nessus Agent to a directory outside of the default location on a Windows host,...
High
Unreviewed
CVE-2024-3291
was published
May 17, 2024
When installing Nessus to a directory outside of the default location on a Windows host, Nessus...
High
Unreviewed
CVE-2024-3289
was published
May 17, 2024
Insufficient macro permission validation of The Document Foundation LibreOffice allows an...
High
Unreviewed
CVE-2023-6186
was published
Dec 11, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary file read and write...
High
Unreviewed
CVE-2023-43612
was published
Nov 20, 2023
A software vulnerability has been identified in the U-Boot Secondary Program Loader (SPL) before...
High
Unreviewed
CVE-2023-39902
was published
Oct 17, 2023
System files could be overwritten using the less command in Brocade Fabric OS before Brocade...
High
Unreviewed
CVE-2023-31926
was published
Aug 2, 2023
A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. When a local...
High
Unreviewed
CVE-2023-1386
was published
Jul 24, 2023
IBM Security Guardium 11.3 could allow a local user to escalate their privileges due to improper...
High
Unreviewed
CVE-2022-43910
was published
Jul 19, 2023
A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local...
High
Unreviewed
CVE-2023-0975
was published
Jul 6, 2023
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially...
High
Unreviewed
CVE-2022-4139
was published
Jul 6, 2023
If temporary "one-time" permissions, such as the ability to use the Camera, were granted to a...
High
Unreviewed
CVE-2023-28161
was published
Jun 2, 2023
Suprema BioStar 2 before 2022 Q4, v2.9.1 has Insecure Permissions. A vulnerability in the web...
High
Unreviewed
CVE-2023-31923
was published
May 22, 2023
ProTip!
Advisories are also available from the
GraphQL API