Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

894 advisories

Loading
An arbitrary file deletion in ZSATrayManager where it protects the temporary encrypted ZApp... High Unreviewed
CVE-2023-41969 was published Mar 26, 2024
The Improper link resolution before file access ('Link Following') vulnerability in SonicWall... High Unreviewed
CVE-2024-45316 was published Oct 11, 2024
The Improper link resolution before file access ('Link Following') vulnerability in SonicWall... Unknown Unreviewed
CVE-2024-45315 was published Oct 11, 2024
PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can... High Unreviewed
CVE-2023-42137 was published Jan 15, 2024
Visual Studio Collector Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-43603 was published Oct 8, 2024
Windows Storage Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43551 was published Oct 8, 2024
Azure Monitor Agent Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38097 was published Oct 8, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43501 was published Oct 8, 2024
A potential security vulnerability has been identified in the HP Hotkey Support software, which... High Unreviewed
CVE-2024-27458 was published Oct 7, 2024
A security agent link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed
CVE-2024-36305 was published Jun 11, 2024
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage... Moderate Unreviewed
CVE-2024-36306 was published Jun 11, 2024
In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check... High Unreviewed
CVE-2024-46744 was published Sep 18, 2024
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows... High Unreviewed
CVE-2024-8404 was published Sep 26, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed
CVE-2024-4712 was published May 14, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an... Moderate Unreviewed
CVE-2024-5742 was published Jun 12, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18 and... Moderate Unreviewed
CVE-2024-44131 was published Sep 17, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44178 was published Sep 17, 2024
Local privilege escalation during installation due to improper soft link handling. The following... High Unreviewed
CVE-2022-46869 was published Aug 31, 2023
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an... Moderate Unreviewed
CVE-2024-45770 was published Sep 19, 2024
Due to incorrect access control, unauthenticated remote attackers can view the /video.mjpg video... High Unreviewed
CVE-2018-17559 was published Oct 27, 2023
Azure Network Watcher VM Agent Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38188 was published Sep 10, 2024
Azure Network Watcher VM Agent Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43470 was published Sep 10, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the... Moderate Unreviewed
CVE-2024-31952 was published May 14, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX symbolic link (symlink)... Moderate Unreviewed
CVE-2024-39578 was published Aug 31, 2024
Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability... Moderate Unreviewed
CVE-2023-43078 was published Aug 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database