Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,730
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,309 advisories

Loading
IBM Application Gateway 19.12 through 24.09 could allow a local privileged user to perform... Moderate Unreviewed
CVE-2024-45655 was published Jun 3, 2025
Permission management vulnerability in the multi-screen interaction module. Successful... High Unreviewed
CVE-2023-52116 was published Jan 16, 2024
In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new... High Unreviewed
CVE-2025-20298 was published Jun 2, 2025
An issue was discovered in Zoho Application Control Plus before version 10.0.511. The Element... Moderate Unreviewed
CVE-2020-15595 was published May 24, 2022
In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to... Critical Unreviewed
CVE-2017-20148 was published Sep 21, 2022
Netwrix Directory Manager (formerly Imanami GroupID) before and including v.11.0.0.0 and after v... Moderate Unreviewed
CVE-2025-48747 was published May 28, 2025
Fess has Insecure Temporary File Permissions Low
CVE-2025-48382 was published for org.codelibs.fess:fess (Maven) May 27, 2025
simei2k yusuke-koyoshi
Code by Zapier before 2022-08-17 allowed intra-account privilege escalation that included... Critical Unreviewed
CVE-2022-28802 was published Sep 22, 2022
Crestron AirMedia for Windows before 5.5.1.84 has insecure inherited permissions, which leads to... High Unreviewed
CVE-2022-40298 was published Sep 25, 2022
For a short time they PTY is set to mode 666, allowing any user on the system to connect to the... Moderate Unreviewed
CVE-2025-46802 was published May 26, 2025
A Privilege Escalation vulnerability has been found in ProactivaNet v3.24.0.0 from Grupo Espiral... High Unreviewed
CVE-2025-40672 was published May 26, 2025
Insecure permissions in autodeploy-layer v1.2.0 allows attackers to escalate privileges and... High Unreviewed
CVE-2025-45472 was published May 22, 2025
Insecure permissions in measure-cold-start v1.4.1 allows attackers to escalate privileges and... High Unreviewed
CVE-2025-45471 was published May 22, 2025
In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3... Low Unreviewed
CVE-2019-13535 was published May 24, 2022
Insecure permissions in fc-stable-diffusion-plus v1.0.18 allows attackers to escalate privileges... High Unreviewed
CVE-2025-45468 was published May 22, 2025
Packages downloaded by Checkmk's automatic agent updates on Linux and Solaris have incorrect... Moderate Unreviewed
CVE-2025-32915 was published May 22, 2025
Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework... Moderate Unreviewed
CVE-2025-3936 was published May 22, 2025
Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework... High Unreviewed
CVE-2025-3944 was published May 22, 2025
GStreamer Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-2759 was published May 22, 2025
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and... High Unreviewed
CVE-2025-34025 was published May 22, 2025
If folder security is misconfigured for Actian Zen PSQL BEFORE Patch Update 1 for Zen 15 SP1 (v15... High Unreviewed
CVE-2022-40756 was published Oct 1, 2022
A permissions issue was addressed with additional restrictions. This issue is fixed in visionOS 2... Moderate Unreviewed
CVE-2025-31262 was published May 19, 2025
Improper access control in the GitLab CE/EE API affecting all versions starting from 12.8 before... Moderate Unreviewed
CVE-2022-3325 was published Oct 17, 2022
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... High Unreviewed
CVE-2025-40574 was published May 13, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... Moderate Unreviewed
CVE-2025-40572 was published May 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database