GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,079 advisories
Filter by severity
MLflow's excessive directory permissions allow local privilege escalation
High
CVE-2024-27134
was published
for
mlflow
(pip)
Nov 25, 2024
Incorrect access control in Meabilis CMS 1.0 allows attackers to access other users' address...
Unknown
Unreviewed
CVE-2024-44786
was published
Nov 22, 2024
An issue in Owncloud android apk v.4.3.1 allows a physically proximate attacker to escalate...
Moderate
Unreviewed
CVE-2024-50657
was published
Nov 22, 2024
A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login?...
Moderate
Unreviewed
CVE-2024-48533
was published
Nov 20, 2024
An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges.
Critical
Unreviewed
CVE-2024-51162
was published
Nov 20, 2024
Moodle IDOR when deleting OAuth2 linked accounts
Moderate
CVE-2024-45690
was published
for
moodle/moodle
(Composer)
Nov 20, 2024
In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there...
High
Unreviewed
CVE-2018-9432
was published
Nov 20, 2024
In the getHost() function of UriTest.java, there is the possibility of incorrect web origin...
Critical
Unreviewed
CVE-2018-9467
was published
Nov 20, 2024
In bootloader there is fastboot command allowing user specified kernel command line arguments....
High
Unreviewed
CVE-2018-9369
was published
Nov 19, 2024
In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an...
High
Unreviewed
CVE-2023-21270
was published
Nov 19, 2024
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.
Critical
Unreviewed
CVE-2024-51051
was published
Nov 19, 2024
Incorrect access control in QuickHeal Antivirus Pro 24.1.0.182 and earlier allows authenticated...
Moderate
Unreviewed
CVE-2024-48293
was published
Nov 18, 2024
An issue in the wssrvc.exe service of QuickHeal Antivirus Pro Version v24.0 and Quick Heal Total...
High
Unreviewed
CVE-2024-48292
was published
Nov 18, 2024
Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent.
High
Unreviewed
CVE-2024-52926
was published
Nov 18, 2024
guix-daemon in GNU Guix before 5ab3c4c allows privilege escalation because build outputs are...
High
Unreviewed
CVE-2024-52867
was published
Nov 17, 2024
In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings...
High
Unreviewed
CVE-2017-13314
was published
Nov 16, 2024
A security vulnerability has been identified in HPE Data Management Framework (DMF) Suite (CXFS)....
Moderate
Unreviewed
CVE-2024-51764
was published
Nov 16, 2024
A security vulnerability has been identified in HPE Cray Data Virtualization Service (DVS)....
Moderate
Unreviewed
CVE-2024-51765
was published
Nov 16, 2024
In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading...
High
Unreviewed
CVE-2017-13310
was published
Nov 16, 2024
In the read() function of ProcessStats.java, there is a possible read/write serialization issue...
High
Unreviewed
CVE-2017-13311
was published
Nov 16, 2024
In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to...
High
Unreviewed
CVE-2017-13312
was published
Nov 16, 2024
By default, dedicated folders of ZONEPOINT for Windows up to 2024.1 can be accessed by other...
High
Unreviewed
CVE-2024-46467
was published
Nov 15, 2024
By default, dedicated folders of CRYHOD for Windows up to 2024.3 can be accessed by other users...
High
Unreviewed
CVE-2024-46465
was published
Nov 15, 2024
By default, dedicated folders of ZONECENTRAL for Windows up to 2024.3 or up to Q.2021.2 (ANSSI...
High
Unreviewed
CVE-2024-46466
was published
Nov 15, 2024
By default, dedicated folders of ORIZON for Windows up to 2024.3 can be accessed by other users...
High
Unreviewed
CVE-2024-46463
was published
Nov 15, 2024
ProTip!
Advisories are also available from the
GraphQL API