GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
864 advisories
Filter by severity
Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a...
High
Unreviewed
CVE-2024-39609
was published
Nov 13, 2024
Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an...
High
Unreviewed
CVE-2024-32483
was published
Nov 13, 2024
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49049
was published
Nov 12, 2024
Windows Update Stack Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43530
was published
Nov 12, 2024
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an...
High
Unreviewed
CVE-2023-22293
was published
Nov 7, 2024
Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an...
High
Unreviewed
CVE-2023-31271
was published
Oct 28, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an...
High
Unreviewed
CVE-2023-38561
was published
Oct 25, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an...
High
Unreviewed
CVE-2023-32647
was published
Oct 25, 2024
Improper access control element in some Intel(R) Ethernet tools and driver install software,...
High
Unreviewed
CVE-2023-39432
was published
Oct 24, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an...
High
Unreviewed
CVE-2023-39425
was published
Oct 24, 2024
Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow...
High
Unreviewed
CVE-2023-40161
was published
Oct 23, 2024
In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs...
High
Unreviewed
CVE-2023-44283
was published
Oct 17, 2024
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2020-36838
was published
Oct 16, 2024
Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a...
High
Unreviewed
CVE-2024-38204
was published
Oct 16, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version...
High
Unreviewed
CVE-2023-25777
was published
Oct 10, 2024
Visual C++ Redistributable Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43590
was published
Oct 8, 2024
Insecure permissions in the Bluetooth Low Energy (BLE) component of Fire-Boltt Artillery Smart...
High
Unreviewed
CVE-2024-46539
was published
Oct 8, 2024
Microsoft SharePoint Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43503
was published
Oct 8, 2024
Vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user...
High
Unreviewed
CVE-2024-9576
was published
Oct 7, 2024
An issue was discovered in SonarSource SonarQube before 9.9.5 LTA and 10.x before 10.5. A...
High
Unreviewed
CVE-2024-47910
was published
Oct 4, 2024
PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service...
High
Unreviewed
CVE-2024-46280
was published
Sep 30, 2024
TestLink 1.9.20 is vulnerable to Incorrect Access Control in the TestPlan editing section. When a...
High
Unreviewed
CVE-2024-46097
was published
Sep 27, 2024
An issue in Foxit Software Foxit PDF Reader v.2024.2.2.25170 allows a local attacker to execute...
High
Unreviewed
CVE-2024-41605
was published
Sep 26, 2024
An information disclosure vulnerability in the /Letter/PrintQr/ endpoint of Solvait v24.4.2...
High
Unreviewed
CVE-2024-44860
was published
Sep 26, 2024
A host header injection vulnerability in scheduleR v0.0.18 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45982
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API