GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
61 advisories
Filter by severity
Local Privilege Escalation in PyInstaller
High
CVE-2019-16784
was published
for
PyInstaller
(pip)
Jan 16, 2020
Execution with Unnecessary Privileges in ipython
High
CVE-2022-21699
was published
for
ipython
(pip)
Jan 21, 2022
Authentication Bypass in keycloak
High
CVE-2020-27826
was published
for
org.keycloak:keycloak-core
(Maven)
Mar 18, 2022
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could...
High
Unreviewed
CVE-2022-20676
was published
Apr 16, 2022
In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation....
High
Unreviewed
CVE-2021-34591
was published
Apr 28, 2022
It was discovered freeradius up to and including version 3.0.19 does not correctly configure...
High
Unreviewed
CVE-2019-10143
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10145
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10147
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10144
was published
May 24, 2022
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before...
High
Unreviewed
CVE-2019-10167
was published
May 24, 2022
A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4)....
High
Unreviewed
CVE-2020-10056
was published
May 24, 2022
The software performs an operation at a privilege level higher than the minimum level required,...
High
Unreviewed
CVE-2021-27454
was published
May 24, 2022
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker...
High
Unreviewed
CVE-2021-1528
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura...
High
Unreviewed
CVE-2021-25650
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura...
High
Unreviewed
CVE-2021-25651
was published
May 24, 2022
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM...
High
Unreviewed
CVE-2021-37174
was published
May 24, 2022
Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with...
High
Unreviewed
CVE-2022-1744
was published
Jun 25, 2022
Execution with Unnecessary Privileges in JupyterApp
High
CVE-2022-39286
was published
for
jupyter-core
(pip)
Oct 26, 2022
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,...
High
Unreviewed
CVE-2022-3088
was published
Nov 29, 2022
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be...
High
Unreviewed
CVE-2023-0664
was published
Mar 29, 2023
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution...
High
Unreviewed
CVE-2023-25521
was published
Jul 4, 2023
A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo...
High
Unreviewed
CVE-2022-40182
was published
Jul 6, 2023
Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user...
High
Unreviewed
CVE-2023-34118
was published
Jul 11, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions
High
Unreviewed
CVE-2023-39261
was published
Jul 26, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected...
High
Unreviewed
CVE-2023-38641
was published
Aug 8, 2023
ProTip!
Advisories are also available from the
GraphQL API