GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+
1,146 advisories
Filter by severity
In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an...
Critical
Unreviewed
CVE-2024-55956
was published
Dec 13, 2024
Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00...
High
Unreviewed
CVE-2024-4229
was published
Dec 19, 2024
CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and...
High
Unreviewed
CVE-2024-38499
was published
Dec 17, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-44224
was published
Dec 12, 2024
In onResume of AppManagementFragment.java, there is a possible way to prevent users from...
High
Unreviewed
CVE-2023-21121
was published
Jun 15, 2023
In getFullScreenIntentDecision of NotificationInterruptStateProviderImpl.java, there is a...
High
Unreviewed
CVE-2023-21129
was published
Jun 15, 2023
In bindOutputSwitcherAndBroadcastButton of MediaControlPanel.java, there is a possible launch...
High
Unreviewed
CVE-2023-21126
was published
Jun 15, 2023
In various functions of AppStandbyController.java, there is a possible way to break manageability...
High
Unreviewed
CVE-2023-21128
was published
Jun 15, 2023
In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings...
High
Unreviewed
CVE-2017-13314
was published
Nov 16, 2024
In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an...
High
Unreviewed
CVE-2023-21270
was published
Nov 19, 2024
In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to...
High
Unreviewed
CVE-2024-40661
was published
Nov 13, 2024
In updateInternal of MediaProvider.java , there is a possible access of another app's files due...
High
Unreviewed
CVE-2024-43089
was published
Nov 13, 2024
In bindPlayer of MediaControlPanel.java, there is a possible launch arbitrary activity in SysUI...
High
Unreviewed
CVE-2023-21139
was published
Jun 15, 2023
In onNullBinding of CallRedirectionProcessor.java, there is a possible long lived connection due...
High
Unreviewed
CVE-2023-21138
was published
Jun 15, 2023
The MC990 X and UV300 RMC component has and inadequate default configuration that could be...
High
Unreviewed
CVE-2023-30905
was published
Jun 16, 2023
Epic Games Launcher Incorrect Default Permissions Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-11872
was published
Dec 12, 2024
WAVLINK WN701AE M01AE_V240305 was discovered to contain a hardcoded password vulnerability in ...
Critical
Unreviewed
CVE-2024-54745
was published
Dec 6, 2024
COMFAST CF-WR630AX v2.7.0.2 was discovered to contain a hardcoded password vulnerability in /etc...
Critical
Unreviewed
CVE-2024-54751
was published
Dec 10, 2024
Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10...
High
Unreviewed
CVE-2024-8496
was published
Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1...
High
Unreviewed
CVE-2024-9845
was published
Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Security Controls before version...
High
Unreviewed
CVE-2024-10251
was published
Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Performance Manager before version...
High
Unreviewed
CVE-2024-11597
was published
Dec 11, 2024
Under specific circumstances, insecure permissions in Ivanti Application Control before version...
High
Unreviewed
CVE-2024-11598
was published
Dec 11, 2024
An issue was discovered in MSA Safety FieldServer Gateways and Embedded Modules with build...
Critical
Unreviewed
CVE-2024-45494
was published
Dec 10, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 10...
High
Unreviewed
CVE-2024-40805
was published
Jul 30, 2024
ProTip!
Advisories are also available from the
GraphQL API