Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Loading
Improper handling of insufficiency privileges in the ASP could allow a privileged attacker to... Low Unreviewed
CVE-2023-20516 was published Sep 6, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31275 was published Jul 30, 2025
A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local... Moderate Unreviewed
CVE-2025-20177 was published Mar 12, 2025
A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated... Critical Unreviewed
CVE-2025-20156 was published Jan 22, 2025
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit (DPU) contains a... High Unreviewed
CVE-2024-0106 was published Nov 1, 2024
NVIDIA ConnectX Firmware contains a vulnerability where an attacker may cause an improper... High Unreviewed
CVE-2024-0105 was published Nov 1, 2024
JupyterHub has a privilege escalation vulnerability with the `admin:users` scope High
CVE-2024-41942 was published for jupyterhub (pip) Aug 8, 2024
oliver-sanders
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, low-privileged,... Moderate Unreviewed
CVE-2024-20324 was published Mar 27, 2024
XWiki has no right protection on rollback action High
CVE-2024-21648 was published for org.xwiki.platform:xwiki-platform (Maven) Jan 8, 2024
SiberianCMS - CWE-274: Improper Handling of Insufficient Privileges Critical Unreviewed
CVE-2023-39375 was published Sep 27, 2023
Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of insufficient privileges... Moderate Unreviewed
CVE-2023-32494 was published Aug 16, 2023
Amazon CloudWatch Agent for Windows has Privilege Escalation Vector High
CVE-2022-23511 was published for github.com/aws/amazon-cloudwatch-agent (Go) Dec 12, 2022
andrewpollock
Insufficient security control vulnerability in internal database access mechanism of Hitachi... High Unreviewed
CVE-2021-35534 was published Nov 19, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database