Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,777 advisories

Loading
Minio unsafe default: Access keys inherit `admin` of root user, allowing privilege escalation High
CVE-2024-24747 was published for github.com/minio/minio (Go) Feb 1, 2024
NiklasBeierl xSke
donatello
Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an... High Unreviewed
CVE-2023-36496 was published Feb 2, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... Moderate Unreviewed
CVE-2023-31005 was published Feb 3, 2024
Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion... Moderate Unreviewed
CVE-2023-28049 was published Feb 6, 2024
Dell Display Manager application, version 2.1.1.17, contains a vulnerability that low privilege... High Unreviewed
CVE-2023-32451 was published Feb 6, 2024
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user... High Unreviewed
CVE-2024-22237 was published Feb 6, 2024
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user... Moderate Unreviewed
CVE-2024-22239 was published Feb 6, 2024
Rancher permissions on 'namespaces' in any API group grants 'edit' permissions on namespaces in 'core' High
CVE-2023-32194 was published for github.com/rancher/rancher (Go) Feb 8, 2024
AnonySE26
Insecure Permissions vulnerability in Forescout SecureConnector v.11.3.06.0063 allows a local... High Unreviewed
CVE-2024-22795 was published Feb 8, 2024
Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client... Moderate Unreviewed
CVE-2024-23764 was published Feb 8, 2024
An issue discovered in N-able N-central before 2023.6 and earlier allows attackers to gain... Critical Unreviewed
CVE-2023-47132 was published Feb 9, 2024
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform... High Unreviewed
CVE-2023-50957 was published Feb 10, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2... Moderate Unreviewed
CVE-2024-1250 was published Feb 12, 2024
The Plack::Middleware::XSRFBlock package before 0.0.19 for Perl allows attackers to bypass a CSRF... High Unreviewed
CVE-2023-52431 was published Feb 13, 2024
Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file... High Unreviewed
CVE-2024-0353 was published Feb 15, 2024
An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0... High Unreviewed
CVE-2023-45581 was published Feb 15, 2024
Improper Privilege Management vulnerability in Utarit Information Technologies SoliPay Mobile App... High Unreviewed
CVE-2023-4993 was published Feb 15, 2024
Local privilege escalation vulnerability affects OpenText Operations Agent product versions 12.15... High Unreviewed
CVE-2024-0622 was published Feb 15, 2024
In sanitizeSbn of NotificationManagerService.java, there is a possible way to launch an activity... High Unreviewed
CVE-2023-40106 was published Feb 16, 2024
On Linux, Node.js ignores certain environment variables if those may have been set by an... High Unreviewed
CVE-2024-21892 was published Feb 20, 2024
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor... Moderate Unreviewed
CVE-2024-22235 was published Feb 21, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1,... Moderate Unreviewed
CVE-2023-42952 was published Feb 21, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6... Moderate Unreviewed
CVE-2023-6477 was published Feb 22, 2024
As a manager, you should not be able to modify a series of settings. In the UI this is indeed... High Unreviewed
CVE-2024-0439 was published Feb 26, 2024
An issue in Nagios XI 2024R1.01 allows a remote attacker to escalate privileges via a crafted... Critical Unreviewed
CVE-2024-24402 was published Feb 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database