GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,078 advisories
Filter by severity
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote...
Critical
Unreviewed
CVE-2024-27710
was published
Jul 5, 2024
Insecure Permissions vulnerability in Micro-Star International Co., Ltd MSI Center v.2.0.36.0...
Moderate
Unreviewed
CVE-2024-37726
was published
Jul 3, 2024
Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate...
High
Unreviewed
CVE-2024-25088
was published
Jul 2, 2024
Improper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate...
High
Unreviewed
CVE-2024-25086
was published
Jul 2, 2024
An issue discovered in MSP360 Backup Agent v7.8.5.15 and v7.9.4.84 allows attackers to obtain...
High
Unreviewed
CVE-2024-39206
was published
Jul 2, 2024
Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate...
High
Unreviewed
CVE-2024-22106
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37133
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37126
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-32854
was published
Jul 2, 2024
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on...
High
Unreviewed
CVE-2024-4395
was published
Jun 28, 2024
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in...
High
Unreviewed
CVE-2024-5009
was published
Jun 25, 2024
Improper Privilege Management vulnerability in Membership Software WishList Member X allows...
High
Unreviewed
CVE-2024-37107
was published
Jun 24, 2024
When generating the systemd service units for the docker snap (and other similar snaps), snapd...
Critical
Unreviewed
CVE-2020-27352
was published
Jun 21, 2024
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions...
High
Unreviewed
CVE-2024-6240
was published
Jun 21, 2024
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations...
High
Unreviewed
CVE-2024-2003
was published
Jun 21, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Arbitrary Nonce...
Moderate
Unreviewed
CVE-2024-4390
was published
Jun 20, 2024
Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows...
Critical
Unreviewed
CVE-2024-33374
was published
Jun 14, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-36499
was published
Jun 14, 2024
Privilege escalation vulnerability in the AMS module
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2024-36500
was published
Jun 14, 2024
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead...
High
Unreviewed
CVE-2024-32906
was published
Jun 13, 2024
In gpu_pm_power_off_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected...
High
Unreviewed
CVE-2024-32899
was published
Jun 13, 2024
Permission Bypass allowing attackers to disable HDCP 2.2 encryption by not completing the HDCP...
Moderate
Unreviewed
CVE-2024-32918
was published
Jun 13, 2024
In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an...
High
Unreviewed
CVE-2024-29784
was published
Jun 13, 2024
An access control issue in Wvp GB28181 Pro 2.0 allows authenticated attackers to escalate...
High
Unreviewed
CVE-2024-37665
was published
Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2024-5907
was published
Jun 12, 2024
ProTip!
Advisories are also available from the
GraphQL API