Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,018 advisories

Loading
An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges. Critical Unreviewed
CVE-2024-51162 was published Nov 20, 2024
In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there... High Unreviewed
CVE-2018-9432 was published Nov 20, 2024
In the getHost() function of UriTest.java, there is the possibility of incorrect web origin... Critical Unreviewed
CVE-2018-9467 was published Nov 20, 2024
In bootloader there is fastboot command allowing user specified kernel command line arguments.... High Unreviewed
CVE-2018-9369 was published Nov 19, 2024
In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an... High Unreviewed
CVE-2023-21270 was published Nov 19, 2024
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account. Critical Unreviewed
CVE-2024-51051 was published Nov 19, 2024
Incorrect access control in QuickHeal Antivirus Pro 24.1.0.182 and earlier allows authenticated... Moderate Unreviewed
CVE-2024-48293 was published Nov 18, 2024
An issue in the wssrvc.exe service of QuickHeal Antivirus Pro Version v24.0 and Quick Heal Total... High Unreviewed
CVE-2024-48292 was published Nov 18, 2024
Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent. High Unreviewed
CVE-2024-52926 was published Nov 18, 2024
guix-daemon in GNU Guix before 5ab3c4c allows privilege escalation because build outputs are... High Unreviewed
CVE-2024-52867 was published Nov 17, 2024
A security vulnerability has been identified in HPE Data Management Framework (DMF) Suite (CXFS).... Moderate Unreviewed
CVE-2024-51764 was published Nov 16, 2024
In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings... High Unreviewed
CVE-2017-13314 was published Nov 16, 2024
A security vulnerability has been identified in HPE Cray Data Virtualization Service (DVS).... Moderate Unreviewed
CVE-2024-51765 was published Nov 16, 2024
In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading... High Unreviewed
CVE-2017-13310 was published Nov 16, 2024
In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to... High Unreviewed
CVE-2017-13312 was published Nov 16, 2024
In the read() function of ProcessStats.java, there is a possible read/write serialization issue... High Unreviewed
CVE-2017-13311 was published Nov 16, 2024
HCL Connections is vulnerable to a broken access control vulnerability that may allow an... Low Unreviewed
CVE-2024-42188 was published Nov 14, 2024
Restarting a run with revoked script approval allowed by Jenkins Pipeline: Declarative Plugin High
CVE-2024-52551 was published for org.jenkinsci.plugins:pipeline-model-parent (Maven) Nov 13, 2024
Incorrect default permissions in the Intel(R) SDP Tool for Windows software all versions may... Moderate Unreviewed
CVE-2024-35201 was published Nov 13, 2024
Incorrect default permissions in some Intel(R) Distribution for Python software before version... Moderate Unreviewed
CVE-2024-29083 was published Nov 13, 2024
Incorrect default permissions in some Intel(R) Xeon(R) processor memory controller configurations... High Unreviewed
CVE-2024-21820 was published Nov 13, 2024
Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows... Moderate Unreviewed
CVE-2024-25647 was published Nov 13, 2024
In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier... High Unreviewed
CVE-2024-43081 was published Nov 13, 2024
In updateInternal of MediaProvider.java , there is a possible access of another app's files due... High Unreviewed
CVE-2024-43089 was published Nov 13, 2024
In handleMessage of UsbDeviceManager.java, there is a possible method to access device contents... High Unreviewed
CVE-2024-43085 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database