GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,319
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
429 advisories
Filter by severity
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a...
Moderate
Unreviewed
CVE-2024-26302
was published
Feb 28, 2024
Sensitive information disclosure due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2023-48678
was published
Feb 27, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in tvOS 17.1,...
Moderate
Unreviewed
CVE-2023-42953
was published
Feb 21, 2024
The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and...
Moderate
Unreviewed
CVE-2024-25605
was published
Feb 20, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...
Moderate
Unreviewed
CVE-2024-20921
was published
Feb 17, 2024
An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS...
Moderate
Unreviewed
CVE-2023-49721
was published
Feb 15, 2024
Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions...
Moderate
Unreviewed
CVE-2024-22430
was published
Feb 1, 2024
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023...
Moderate
Unreviewed
CVE-2023-29081
was published
Jan 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ignazio Scimone Albo...
Moderate
Unreviewed
CVE-2024-22301
was published
Jan 24, 2024
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio...
Moderate
Unreviewed
CVE-2022-4964
was published
Jan 24, 2024
A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID...
Moderate
Unreviewed
CVE-2024-0770
was published
Jan 22, 2024
Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for...
Moderate
Unreviewed
CVE-2023-29244
was published
Jan 19, 2024
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning...
Moderate
Unreviewed
CVE-2023-6457
was published
Jan 16, 2024
[PROBLEMTYPE] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT].
Moderate
Unreviewed
CVE-2022-45793
was published
Jan 10, 2024
A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows...
Moderate
Unreviewed
CVE-2023-5536
was published
Dec 12, 2023
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow...
Moderate
Unreviewed
CVE-2023-28870
was published
Dec 9, 2023
Permission management vulnerability in the module for disabling Sound Booster. Successful...
Moderate
Unreviewed
CVE-2023-6273
was published
Dec 6, 2023
Apache Superset has Incorrect Default Permissions
Moderate
CVE-2023-42501
was published
for
apache-superset
(pip)
Nov 27, 2023
A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is...
Moderate
Unreviewed
CVE-2023-6302
was published
Nov 27, 2023
PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default...
Moderate
Unreviewed
CVE-2023-43081
was published
Nov 22, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information...
Moderate
Unreviewed
CVE-2023-42774
was published
Nov 20, 2023
Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows...
Moderate
Unreviewed
CVE-2023-47335
was published
Nov 16, 2023
Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may...
Moderate
Unreviewed
CVE-2023-32638
was published
Nov 14, 2023
Incorrect default permissions in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows...
Moderate
Unreviewed
CVE-2023-27305
was published
Nov 14, 2023
ProTip!
Advisories are also available from the
GraphQL API