GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
3,397 advisories
Filter by severity
MinIO vulnerable to privilege escalation in IAM import API
High
CVE-2024-55949
was published
for
github.com/minio/minio
(Go)
Dec 16, 2024
Keycloak's admin API allows low privilege users to use administrative functions
High
CVE-2024-3656
was published
for
org.keycloak:keycloak-services
(Maven)
Jun 11, 2024
Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent.
High
Unreviewed
CVE-2024-52926
was published
Nov 18, 2024
There is an improper privilege management vulnerability in Huawei smart phone product. A local,...
High
Unreviewed
CVE-2020-9080
was published
Dec 27, 2024
There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to...
High
Unreviewed
CVE-2020-9222
was published
Dec 27, 2024
An issue exists in SoftIron HyperCloud
where authenticated, but non-admin users can create data...
Moderate
Unreviewed
CVE-2024-13058
was published
Dec 31, 2024
An engine link following vulnerability in Trend Micro Apex One could allow a local attacker to...
High
Unreviewed
CVE-2024-55631
was published
Dec 31, 2024
A security agent link following vulnerability in Trend Micro Apex One could allow a local...
High
Unreviewed
CVE-2024-55632
was published
Dec 31, 2024
Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-24527
was published
Apr 16, 2022
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
High
Unreviewed
CVE-2022-26938
was published
May 11, 2022
Windows Push Notifications Apps Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-29125
was published
May 11, 2022
Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-30150
was published
Jun 16, 2022
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-30151
was published
Jun 16, 2022
Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-38007
was published
Sep 14, 2022
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
High
Unreviewed
CVE-2022-26939
was published
May 11, 2022
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability.
Moderate
Unreviewed
CVE-2022-30154
was published
Jun 16, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from...
High
Unreviewed
CVE-2022-33680
was published
Jul 8, 2022
Microsoft Exchange Server Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-41040
was published
Oct 4, 2022
Active Directory Certificate Services Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-37976
was published
Oct 12, 2022
Windows Group Policy Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-37975
was published
Oct 12, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-44708
was published
Dec 13, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-37970
was published
Oct 12, 2022
Microsoft Windows Defender Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-37971
was published
Oct 12, 2022
Azure Arc-enabled Kubernetes cluster Connect Elevation of Privilege Vulnerability.
Critical
Unreviewed
CVE-2022-37968
was published
Oct 12, 2022
Windows Hyper-V Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-37979
was published
Oct 12, 2022
ProTip!
Advisories are also available from the
GraphQL API