GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
905 advisories
Filter by severity
Vulnerability of undefined permissions in the Calendar app.
Impact: Successful exploitation of...
High
Unreviewed
CVE-2023-52545
was published
Apr 8, 2024
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to...
High
Unreviewed
CVE-2024-0259
was published
Mar 28, 2024
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder...
Moderate
Unreviewed
CVE-2024-25958
was published
Mar 26, 2024
ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files.
Moderate
CVE-2024-28862
was published
for
rotp
(RubyGems)
Mar 18, 2024
Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0...
Moderate
Unreviewed
CVE-2023-28389
was published
Mar 14, 2024
Microsoft Defender Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-20671
was published
Mar 12, 2024
In da, there is a possible permission bypass due to a missing permission check. This could lead...
High
Unreviewed
CVE-2024-20005
was published
Mar 4, 2024
Apache Airflow: Incorrect Default Permissions in audit logs for Ops and Viewers users
Moderate
CVE-2024-26280
was published
for
apache-airflow
(pip)
Mar 1, 2024
Sensitive information disclosure due to insecure folder permissions. The following products are...
Moderate
Unreviewed
CVE-2023-48678
was published
Feb 27, 2024
The TD Bank TD Advanced Dashboard client through 3.0.3 for macOS allows arbitrary code execution...
High
Unreviewed
CVE-2023-50975
was published
Feb 21, 2024
The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions...
High
Unreviewed
CVE-2023-7235
was published
Feb 21, 2024
Incorrect directory permissions for the shared NI RabbitMQ service may allow a local...
High
Unreviewed
CVE-2024-1156
was published
Feb 20, 2024
Incorrect permissions in the installation directories for shared SystemLink Elixir based services...
High
Unreviewed
CVE-2024-1155
was published
Feb 20, 2024
The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and...
Moderate
Unreviewed
CVE-2024-25605
was published
Feb 20, 2024
A vulnerability has been identified in Polarion ALM (All versions). The affected product is...
High
Unreviewed
CVE-2023-50236
was published
Feb 13, 2024
Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions...
Moderate
Unreviewed
CVE-2024-22430
was published
Feb 1, 2024
Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows...
High
Unreviewed
CVE-2024-21840
was published
Jan 30, 2024
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023...
Moderate
Unreviewed
CVE-2023-29081
was published
Jan 26, 2024
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio...
Moderate
Unreviewed
CVE-2022-4964
was published
Jan 24, 2024
A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID...
Moderate
Unreviewed
CVE-2024-0770
was published
Jan 22, 2024
Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for...
Moderate
Unreviewed
CVE-2023-29244
was published
Jan 19, 2024
Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions...
High
Unreviewed
CVE-2024-22428
was published
Jan 16, 2024
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning...
Moderate
Unreviewed
CVE-2023-6457
was published
Jan 16, 2024
[PROBLEMTYPE] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT].
Moderate
Unreviewed
CVE-2022-45793
was published
Jan 10, 2024
ProTip!
Advisories are also available from the
GraphQL API