Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

984 advisories

Loading
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control... High Unreviewed
CVE-2024-26029 was published Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos... High Unreviewed
CVE-2024-2698 was published Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions High
CVE-2024-3656 was published for org.keycloak:keycloak-services (Maven) Jun 11, 2024
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-37289 was published Jun 11, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2022-48683 was published Jun 10, 2024
Authlib has algorithm confusion with asymmetric public keys High
CVE-2024-37568 was published for authlib (pip) Jun 9, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting... High Unreviewed
CVE-2024-5131 was published Jun 6, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically... High Unreviewed
CVE-2024-5126 was published Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed
CVE-2024-3504 was published Jun 6, 2024
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,... High Unreviewed
CVE-2024-4520 was published Jun 4, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers. High Unreviewed
CVE-2024-23360 was published Jun 3, 2024
The mobile application (com.transsion.videocallenhancer) interface has improper permission... High Unreviewed
CVE-2024-4988 was published May 21, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users... High Unreviewed
CVE-2024-4151 was published May 20, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3... High Unreviewed
CVE-2023-43748 was published May 16, 2024
Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an... High Unreviewed
CVE-2023-45217 was published May 16, 2024
Improper access control in some Intel(R) Power Gadget software for macOS all versions may allow... High Unreviewed
CVE-2023-40070 was published May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow... High Unreviewed
CVE-2023-40071 was published May 16, 2024
Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225... High Unreviewed
CVE-2022-37341 was published May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow... High Unreviewed
CVE-2022-37410 was published May 16, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access... High Unreviewed
CVE-2024-34099 was published May 15, 2024
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions... High Unreviewed
CVE-2024-34221 was published May 14, 2024
An issue was discovered on certain Nuki Home Solutions devices. Some BLE commands, which should... High Unreviewed
CVE-2022-32507 was published May 14, 2024
Claris International has resolved an issue of potentially allowing unauthorized access to records... High Unreviewed
CVE-2024-27790 was published May 14, 2024
In sendIntentSender of ActivityManagerService.java, there is a possible background activity... High Unreviewed
CVE-2024-0025 was published May 7, 2024
An Improper Certificate Validation could allow a malicious actor with access to an adjacent... High Unreviewed
CVE-2024-29207 was published May 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database