Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

36 advisories

Loading
Improper Preservation of Permissions in xxl-job High
CVE-2024-42681 was published for com.xuxueli:xxl-job-core (Maven) Aug 15, 2024
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before... Moderate Unreviewed
CVE-2024-25561 was published Aug 14, 2024
Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before... Moderate Unreviewed
CVE-2024-23908 was published Aug 14, 2024
Pulp incorrectly assigns RBAC permissions in tasks that create objects Moderate
CVE-2024-7143 was published for pulpcore (pip) Aug 7, 2024
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate... Critical Unreviewed
CVE-2024-36539 was published Jul 24, 2024
Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler High
CVE-2024-39877 was published for apache-airflow (pip) Jul 17, 2024
Firefox Android allowed immediate interaction with permission prompts. This could be used for... High Unreviewed
CVE-2024-6605 was published Jul 9, 2024
Insecure permissions in the AdminController.AjaxSave() method of PPGo_Jobs v2.8.0 allows... Moderate Unreviewed
CVE-2024-36691 was published Jun 12, 2024
This issue was addressed with improved permissions checking. This issue is fixed in macOS Sonoma... High Unreviewed
CVE-2024-27848 was published Jun 10, 2024
Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow... Moderate Unreviewed
CVE-2024-21835 was published May 16, 2024
Insecure inherited permissions in Intel(R) Power Gadget software for Windows all versions may... Moderate Unreviewed
CVE-2023-45736 was published May 16, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5,... High Unreviewed
CVE-2024-27834 was published May 14, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.5.... High Unreviewed
CVE-2024-27822 was published May 14, 2024
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed
CVE-2024-27825 was published May 14, 2024
This issue was addressed with improved checks This issue is fixed in iOS 17.5 and iPadOS 17.5,... High Unreviewed
CVE-2024-27847 was published May 14, 2024
Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker... High Unreviewed
CVE-2024-29417 was published May 3, 2024
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to... High Unreviewed
CVE-2024-26574 was published Apr 8, 2024
Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%... High Unreviewed
CVE-2024-27674 was published Apr 3, 2024
Insecure inherited permissions in some Intel HID Event Filter drivers for Windows 10 for some... Moderate Unreviewed
CVE-2023-38541 was published Jan 19, 2024
The FACSChorus software database can be accessed directly with the privileges of the currently... Moderate Unreviewed
CVE-2023-29065 was published Nov 28, 2023
Insecure inherited permissions in some Intel(R) Simics Simulator software before version 1.7.2... Moderate Unreviewed
CVE-2023-34314 was published Nov 14, 2023
Insecure inherited permissions in the installer for some Intel Server Configuration Utility... Moderate Unreviewed
CVE-2023-34997 was published Nov 14, 2023
Insecure inherited permissions in some Intel Rapid Storage Technology software before version 16... Moderate Unreviewed
CVE-2023-39230 was published Nov 14, 2023
Insecure inherited permissions in some Intel(R) NUC Pro Software Suite installation software... Moderate Unreviewed
CVE-2022-41700 was published Nov 14, 2023
Insecure inherited permissions in some Intel(R) NUC Watchdog Timer installation software before... Moderate Unreviewed
CVE-2022-33898 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API