Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

36 advisories

Loading
Microsoft Publisher Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-38226 was published Sep 10, 2024
Protection mechanism failure in firmware for some Intel(R) Ethernet Network Controllers and... High Unreviewed
CVE-2024-24983 was published Aug 14, 2024
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network... High Unreviewed
CVE-2024-23499 was published Aug 14, 2024
Windows SmartScreen Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-38180 was published Aug 13, 2024
NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter,... High Unreviewed
CVE-2024-0101 was published Aug 8, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2023-42918 was published Jul 29, 2024
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-38070 was published Jul 9, 2024
Azure CycleCloud Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38092 was published Jul 9, 2024
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote... High Unreviewed
CVE-2024-27713 was published Jul 5, 2024
Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. This... High Unreviewed
CVE-2024-6153 was published Jun 20, 2024
Dropbox Desktop Folder Sharing Mark-of-the-Web Bypass Vulnerability. This vulnerability allows... High Unreviewed
CVE-2024-5924 was published Jun 13, 2024
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for... High Unreviewed
CVE-2022-48611 was published Apr 26, 2024
SmartScreen Prompt Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-29988 was published Apr 9, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-28920 was published Apr 9, 2024
Internet Shortcut Files Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-21412 was published Feb 13, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20673 was published Feb 13, 2024
During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the... High Unreviewed
CVE-2023-5553 was published Nov 21, 2023
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously... High Unreviewed
CVE-2023-5557 was published Oct 13, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4... High Unreviewed
CVE-2023-34984 was published Sep 13, 2023
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version... High Unreviewed
CVE-2023-30722 was published Sep 6, 2023
Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM... High Unreviewed
CVE-2023-34427 was published Aug 11, 2023
Windows Remote Desktop Security Feature Bypass Vulnerability High Unreviewed
CVE-2023-35352 was published Jul 11, 2023
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered... High Unreviewed
CVE-2023-3089 was published Jul 5, 2023
Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an... High Unreviewed
CVE-2022-41979 was published May 10, 2023
The OWASP ModSecurity Core Rule Set (CRS) is affected by a response body bypass. A client can... High Unreviewed
CVE-2022-39957 was published Sep 21, 2022
ProTip! Advisories are also available from the GraphQL API