GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
22 advisories
Filter by severity
Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may...
High
Unreviewed
CVE-2023-33870
was published
Oct 25, 2024
Improper Preservation of Permissions in xxl-job
High
CVE-2024-42681
was published
for
com.xuxueli:xxl-job-core
(Maven)
Aug 15, 2024
Pulp incorrectly assigns RBAC permissions in tasks that create objects
High
CVE-2024-7143
was published
for
pulpcore
(pip)
Aug 7, 2024
Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler
High
CVE-2024-39877
was published
for
apache-airflow
(pip)
Jul 17, 2024
Firefox Android allowed immediate interaction with permission prompts. This could be used for...
High
Unreviewed
CVE-2024-6605
was published
Jul 9, 2024
This issue was addressed with improved permissions checking. This issue is fixed in macOS Sonoma...
High
Unreviewed
CVE-2024-27848
was published
Jun 10, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.5....
High
Unreviewed
CVE-2024-27822
was published
May 14, 2024
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing...
High
Unreviewed
CVE-2024-27825
was published
May 14, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5,...
High
Unreviewed
CVE-2024-27834
was published
May 14, 2024
This issue was addressed with improved checks This issue is fixed in iOS 17.5 and iPadOS 17.5,...
High
Unreviewed
CVE-2024-27847
was published
May 14, 2024
Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker...
High
Unreviewed
CVE-2024-29417
was published
May 3, 2024
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to...
High
Unreviewed
CVE-2024-26574
was published
Apr 8, 2024
Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%...
High
Unreviewed
CVE-2024-27674
was published
Apr 3, 2024
Insecure inherited permissions in some Intel(R) oneMKL software before version 2022.0 may allow...
High
Unreviewed
CVE-2023-28658
was published
Aug 11, 2023
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing...
High
Unreviewed
CVE-2023-33990
was published
Jul 11, 2023
Insecure inherited permissions for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may...
High
Unreviewed
CVE-2022-46656
was published
May 10, 2023
Insecure inherited permissions in the HotKey Services for some Intel(R) NUC P14E Laptop Element...
High
Unreviewed
CVE-2022-41687
was published
May 10, 2023
Insecure inherited permissions in the Intel(R) VTune(TM) Profiler software before version 2023.0...
High
Unreviewed
CVE-2022-41658
was published
May 10, 2023
Insecure inherited permissions in the Intel(R) NUC Software Studio Service installer before...
High
Unreviewed
CVE-2022-38103
was published
May 10, 2023
Incorrect default permissions in the installer software for some Intel(r) NUC Kit Wireless...
High
Unreviewed
CVE-2022-36377
was published
Nov 11, 2022
Insecure Inherited Permissions in Apache Hadoop
High
CVE-2016-6811
was published
for
org.apache.hadoop:hadoop-common
(Maven)
May 14, 2022
Insecure Inherited Permissions in neoan3-apps/template
High
CVE-2021-41170
was published
for
neoan3-apps/template
(Composer)
Nov 10, 2021
ProTip!
Advisories are also available from the
GraphQL API