GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,668
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
425 advisories
Filter by severity
When the installation directory does not have sufficiently restrictive file permissions, an...
High
Unreviewed
CVE-2022-43701
was published
Jul 28, 2023
When the directory containing the installer does not have sufficiently restrictive file...
High
Unreviewed
CVE-2022-43702
was published
Jul 28, 2023
Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager...
High
Unreviewed
CVE-2020-36695
was published
Jul 18, 2023
Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users...
High
Unreviewed
CVE-2023-32183
was published
Jul 7, 2023
NGINX Management Suite default file permissions are set such that an authenticated attacker may...
High
Unreviewed
CVE-2023-28724
was published
Jul 6, 2023
A valid XCC user's local account permissions overrides their active directory permissions under...
High
Unreviewed
CVE-2023-29057
was published
Jul 6, 2023
A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software...
High
Unreviewed
CVE-2023-20178
was published
Jun 28, 2023
There is a permission and access control vulnerability in some ZTE AndroidTV STBs. Due to...
High
Unreviewed
CVE-2023-25645
was published
Jun 16, 2023
A local privilege escalation vulnerability in the ThinkPad Hybrid USB-C with USB-A Dock Firmware...
High
Unreviewed
CVE-2022-4569
was published
Jun 5, 2023
Missing "--allow-net" permission check for built-in Node modules
High
CVE-2023-33966
was published
for
deno
(Rust)
May 31, 2023
Download Center fails to properly validate the file path submitted by a user, An attacker can...
High
Unreviewed
CVE-2023-2749
was published
May 31, 2023
SoLive 1.6.14 thru 1.6.20 for Android has an exposed component that provides a method to modify...
High
Unreviewed
CVE-2023-29731
was published
May 30, 2023
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions...
High
Unreviewed
CVE-2023-28079
was published
May 30, 2023
In ebankIT 6, the public endpoints /public/token/Email/generate and /public/token/SMS/generate...
High
Unreviewed
CVE-2023-33291
was published
May 29, 2023
nfpm has incorrect default permissions
High
CVE-2023-32698
was published
for
github.com/goreleaser/nfpm
(Go)
May 24, 2023
Insecure Permission vulnerability found in Botkind/Siber Systems SyncApp v.19.0.3.0 allows a...
High
Unreviewed
CVE-2023-29838
was published
May 22, 2023
In retrieveAppEntry of NotificationAccessDetails.java, there is a missing permission check. This...
High
Unreviewed
CVE-2023-21107
was published
May 16, 2023
Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM...
High
Unreviewed
CVE-2023-22440
was published
May 10, 2023
Incorrect default permissions in the Audio Service for some Intel(R) NUC P14E Laptop Element...
High
Unreviewed
CVE-2023-27382
was published
May 10, 2023
Incorrect default permissions for the Intel(R) HDMI Firmware Update Tool for NUC before version 1...
High
Unreviewed
CVE-2022-40971
was published
May 10, 2023
Insecure inherited permissions in the HotKey Services for some Intel(R) NUC P14E Laptop Element...
High
Unreviewed
CVE-2022-41687
was published
May 10, 2023
Incorrect default permissions in the Intel(R) VROC software before version 7.7.6.1003 may allow...
High
Unreviewed
CVE-2022-30338
was published
May 10, 2023
Incorrect default permissions in the software installer for Intel(R) Unite(R) Client software for...
High
Unreviewed
CVE-2022-33963
was published
May 10, 2023
Incorrect default permissions for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may...
High
Unreviewed
CVE-2022-36391
was published
May 10, 2023
In Nokia One-NDS (aka Network Directory Server) through 20.9, some Sudo permissions can be...
High
Unreviewed
CVE-2022-30759
was published
May 2, 2023
ProTip!
Advisories are also available from the
GraphQL API