GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
924 advisories
Filter by severity
The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions...
High
Unreviewed
CVE-2023-7235
was published
Feb 21, 2024
Incorrect permissions in the installation directories for shared SystemLink Elixir based services...
High
Unreviewed
CVE-2024-1155
was published
Feb 20, 2024
Incorrect directory permissions for the shared NI RabbitMQ service may allow a local...
High
Unreviewed
CVE-2024-1156
was published
Feb 20, 2024
The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and...
Moderate
Unreviewed
CVE-2024-25605
was published
Feb 20, 2024
Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a...
High
Unreviewed
CVE-2023-38960
was published
Feb 14, 2024
A vulnerability has been identified in Polarion ALM (All versions). The affected product is...
High
Unreviewed
CVE-2023-50236
was published
Feb 13, 2024
Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions...
Moderate
Unreviewed
CVE-2024-22430
was published
Feb 1, 2024
In Telerik Test Studio versions prior to
v2023.3.1330, a privilege elevation vulnerability has...
High
Unreviewed
CVE-2024-0833
was published
Jan 31, 2024
Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows...
High
Unreviewed
CVE-2024-21840
was published
Jan 30, 2024
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023...
Moderate
Unreviewed
CVE-2023-29081
was published
Jan 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ignazio Scimone Albo...
Moderate
Unreviewed
CVE-2024-22301
was published
Jan 24, 2024
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio...
Moderate
Unreviewed
CVE-2022-4964
was published
Jan 24, 2024
A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID...
Moderate
Unreviewed
CVE-2024-0770
was published
Jan 22, 2024
Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for...
Moderate
Unreviewed
CVE-2023-29244
was published
Jan 19, 2024
Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions...
High
Unreviewed
CVE-2024-22428
was published
Jan 16, 2024
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning...
Moderate
Unreviewed
CVE-2023-6457
was published
Jan 16, 2024
[PROBLEMTYPE] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT].
Moderate
Unreviewed
CVE-2022-45793
was published
Jan 10, 2024
Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1, allow local...
High
Unreviewed
CVE-2023-50612
was published
Jan 6, 2024
A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows...
Moderate
Unreviewed
CVE-2023-5536
was published
Dec 12, 2023
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow...
Moderate
Unreviewed
CVE-2023-28870
was published
Dec 9, 2023
Permission management vulnerability in the PMS module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-46773
was published
Dec 6, 2023
Permission management vulnerability in the module for disabling Sound Booster. Successful...
Moderate
Unreviewed
CVE-2023-6273
was published
Dec 6, 2023
Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to...
High
Unreviewed
CVE-2023-37572
was published
Dec 5, 2023
Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker...
Critical
Unreviewed
CVE-2023-47462
was published
Nov 29, 2023
ProTip!
Advisories are also available from the
GraphQL API