Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,281 advisories

Loading
Windows IP Routing Management Snapin Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49080 was published Dec 12, 2024
Microsoft Office Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49059 was published Dec 12, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49074 was published Dec 12, 2024
Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49072 was published Dec 12, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49084 was published Dec 12, 2024
System Center Operations Manager Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43594 was published Dec 12, 2024
A heap-based buffer overflow in IPsec of Ivanti Connect Secure before version 22.7R2.3 allows a... High Unreviewed
CVE-2024-37377 was published Dec 12, 2024
An out-of-bounds read in IPsec of Ivanti Connect Secure before version 22.7R2.1 allows a remote... High Unreviewed
CVE-2024-37401 was published Dec 12, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to... High Unreviewed
CVE-2024-12381 was published Dec 12, 2024
Use after free in Translate in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to... High Unreviewed
CVE-2024-12382 was published Dec 12, 2024
XnSoft XnView Classic RWZ File Parsing Integer Underflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-11950 was published Dec 12, 2024
GFI Archiver Store Service Deserialization of Untrusted Data Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-11949 was published Dec 12, 2024
Epic Games Launcher Incorrect Default Permissions Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-11872 was published Dec 12, 2024
GFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-11947 was published Dec 12, 2024
The www-data user can elevate its privileges because sudo is configured to allow the execution of... High Unreviewed
CVE-2024-28139 was published Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Security Controls before version... High Unreviewed
CVE-2024-10251 was published Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10... High Unreviewed
CVE-2024-8496 was published Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1... High Unreviewed
CVE-2024-9845 was published Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Performance Manager before version... High Unreviewed
CVE-2024-11597 was published Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Application Control before version... High Unreviewed
CVE-2024-11598 was published Dec 11, 2024
The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-11840 was published Dec 11, 2024
Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24... High Unreviewed
CVE-2024-12363 was published Dec 11, 2024
Dell VxVerify, versions prior to x.40.405, contain a Plain-text Password Storage Vulnerability in... High Unreviewed
CVE-2024-53292 was published Dec 11, 2024
Dell ThinOS version 2408 contains an Improper Neutralization of Special Elements used in a... High Unreviewed
CVE-2024-53290 was published Dec 11, 2024
Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition... High Unreviewed
CVE-2024-53289 was published Dec 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database