GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,576
Composer 4,462
Erlang 33
GitHub Actions 22
Go 2,159
Maven 5,338
npm 3,820
NuGet 696
pip 3,502
Pub 12
RubyGems 903
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,507

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

447 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023... Moderate Unreviewed

CVE-2023-29081 was published Jan 26, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ignazio Scimone Albo... Moderate Unreviewed

CVE-2024-22301 was published Jan 24, 2024

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio... Moderate Unreviewed

CVE-2022-4964 was published Jan 24, 2024

A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID... Moderate Unreviewed

CVE-2024-0770 was published Jan 22, 2024

Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for... Moderate Unreviewed

CVE-2023-29244 was published Jan 19, 2024

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning... Moderate Unreviewed

CVE-2023-6457 was published Jan 16, 2024

[PROBLEMTYPE] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT]. Moderate Unreviewed

CVE-2022-45793 was published Jan 10, 2024

A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows... Moderate Unreviewed

CVE-2023-5536 was published Dec 12, 2023

Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow... Moderate Unreviewed

CVE-2023-28870 was published Dec 9, 2023

Permission management vulnerability in the module for disabling Sound Booster. Successful... Moderate Unreviewed

CVE-2023-6273 was published Dec 6, 2023

Apache Superset has Incorrect Default Permissions Moderate

CVE-2023-42501 was published for apache-superset (pip) Nov 27, 2023

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is... Moderate Unreviewed

CVE-2023-6302 was published Nov 27, 2023

PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default... Moderate Unreviewed

CVE-2023-43081 was published Nov 22, 2023

in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information... Moderate Unreviewed

CVE-2023-42774 was published Nov 20, 2023

Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows... Moderate Unreviewed

CVE-2023-47335 was published Nov 16, 2023

Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may... Moderate Unreviewed

CVE-2023-32638 was published Nov 14, 2023

Incorrect default permissions in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows... Moderate Unreviewed

CVE-2023-27305 was published Nov 14, 2023

A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files,... Moderate Unreviewed

CVE-2023-4091 was published Nov 3, 2023

A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of... Moderate Unreviewed

CVE-2022-4575 was published Oct 30, 2023

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux... Moderate Unreviewed

CVE-2023-45690 was published Oct 16, 2023

A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in... Moderate Unreviewed

CVE-2023-4065 was published Sep 27, 2023

Sensitive information disclosure due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2023-5042 was published Sep 20, 2023

The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4... Moderate Unreviewed

CVE-2022-3466 was published Sep 15, 2023

A permissions issue was addressed with improved redaction of sensitive information. This issue is... Moderate Unreviewed

CVE-2023-34352 was published Sep 6, 2023

Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an... Moderate Unreviewed

CVE-2023-2737 was published Aug 16, 2023

Previous 1 2 3 4 5 6 7 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

447 advisories