Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

56 advisories

Loading
Local Privilege Escalation in PyInstaller High
CVE-2019-16784 was published for PyInstaller (pip) Jan 16, 2020
faridtsl lnv42
htgoebel
Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with... High Unreviewed
CVE-2022-1744 was published Jun 25, 2022
The software performs an operation at a privilege level higher than the minimum level required,... High Unreviewed
CVE-2021-27454 was published May 24, 2022
In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation.... High Unreviewed
CVE-2021-34591 was published Apr 28, 2022
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM... High Unreviewed
CVE-2021-37174 was published May 24, 2022
A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4).... High Unreviewed
CVE-2020-10056 was published May 24, 2022
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,... High Unreviewed
CVE-2022-3088 was published Nov 29, 2022
Authentication Bypass in keycloak High
CVE-2020-27826 was published for org.keycloak:keycloak-core (Maven) Mar 18, 2022
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be... High Unreviewed
CVE-2023-0664 was published Mar 29, 2023
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed
CVE-2021-1528 was published May 24, 2022
kOps privilege escalation vulnerability High
CVE-2023-1943 was published for k8s.io/kops (Go) Oct 12, 2023
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user... High Unreviewed
CVE-2023-33873 was published Nov 15, 2023
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could... High Unreviewed
CVE-2022-20676 was published Apr 16, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed
CVE-2021-25651 was published May 24, 2022
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the... High Unreviewed
CVE-2024-0073 was published Mar 28, 2024
It was discovered freeradius up to and including version 3.0.19 does not correctly configure... High Unreviewed
CVE-2019-10143 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed
CVE-2021-25650 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10144 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10145 was published May 24, 2022
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before... High Unreviewed
CVE-2019-10167 was published May 24, 2022
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution... High Unreviewed
CVE-2023-25521 was published Jul 4, 2023
A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo... High Unreviewed
CVE-2022-40182 was published Jul 6, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions High Unreviewed
CVE-2023-39261 was published Jul 26, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected... High Unreviewed
CVE-2023-38641 was published Aug 8, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed
CVE-2023-4814 was published Sep 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database