Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,747
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,311 advisories

Loading
The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application ... High Unreviewed
CVE-2024-37574 was published Dec 4, 2024
Incorrect permission assignment in temporary access requests component in Devolutions Remote... High Unreviewed
CVE-2024-12149 was published Dec 4, 2024
Incorrect permission assignment in the user migration feature in Devolutions Server 2024.3.8.0... Moderate Unreviewed
CVE-2024-12151 was published Dec 4, 2024
From the VSPC management agent machine, under condition that the management agent is authorized... High Unreviewed
CVE-2024-42449 was published Dec 4, 2024
stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp... Moderate Unreviewed
CVE-2024-54159 was published Nov 30, 2024
This Medium severity Security Misconfiguration vulnerability was introduced in version 8.8.1 of... Moderate Unreviewed
CVE-2024-21703 was published Nov 27, 2024
Affected devices create coredump files when crashed, storing them with world-readable permission.... Moderate Unreviewed
CVE-2024-28955 was published Nov 26, 2024
Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation... High Unreviewed
CVE-2024-9245 was published Nov 23, 2024
Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation... High Unreviewed
CVE-2024-9244 was published Nov 23, 2024
Panda Security Dome VPN Incorrect Permission Assignment Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2024-7245 was published Nov 23, 2024
G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2024-6871 was published Nov 23, 2024
An incorrect permission assignment for critical resource vulnerability has been reported to... High Unreviewed
CVE-2024-38646 was published Nov 22, 2024
A low privileged remote attacker may modify the BACNet service properties due to incorrect... High Unreviewed
CVE-2024-41974 was published Nov 18, 2024
A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect... Moderate Unreviewed
CVE-2024-41970 was published Nov 18, 2024
Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow... Moderate Unreviewed
CVE-2024-36276 was published Nov 13, 2024
Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow... Moderate Unreviewed
CVE-2024-36294 was published Nov 13, 2024
Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 and Ivanti Policy... High Unreviewed
CVE-2024-39709 was published Nov 13, 2024
Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local... High Unreviewed
CVE-2024-9842 was published Nov 12, 2024
A vulnerability has been identified in SIPORT (All versions < V3.4.0). The affected application... High Unreviewed
CVE-2024-47783 was published Nov 12, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected... High Unreviewed
CVE-2024-47808 was published Nov 12, 2024
Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization... High Unreviewed
CVE-2024-45164 was published Nov 4, 2024
The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path... Low Unreviewed
CVE-2024-10228 was published Oct 30, 2024
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager that allows a user of... High Unreviewed
CVE-2024-0128 was published Oct 26, 2024
RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists Critical
GHSA-x7xj-jvwp-97rv was published for github.com/rancher/rke2 (Go) Oct 25, 2024
Rancher allows privilege escalation in Windows nodes due to Insecure Access Control Lists Critical
CVE-2023-32197 was published for github.com/rancher/rancher (Go) Oct 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database