Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,732
Erlang
35
GitHub Actions
29
Go
2,310
Maven
5,000+
npm
3,949
NuGet
711
pip
3,728
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,275 advisories

Loading
Incorrect access permission of a specific folder issue exists in RemoteView Agent (for Windows)... High Unreviewed
CVE-2025-24864 was published Mar 6, 2025
In Nintex Automation 5.6 and 5.7 before 5.8, the K2 SmartForms Designer folder has configuration... Moderate Unreviewed
CVE-2025-27926 was published Mar 11, 2025
This issue was addressed through improved state management. This issue is fixed in visionOS 1.3,... Moderate Unreviewed
CVE-2024-54564 was published Mar 21, 2025
Libcontainer is affected by capabilities elevation similar to GHSA-f3fp-gc8g-vw66 Moderate
CVE-2025-27612 was published for libcontainer (Rust) Mar 21, 2025
YJDoc2 utam0k
jprendes
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions... High Unreviewed
CVE-2025-24915 was published Mar 21, 2025
PipeCD Vulnerable to Privilege Escalation High
CVE-2024-53351 was published for github.com/pipe-cd/pipecd (Go) Mar 21, 2025
AWS CDK CodePipeline: trusted entities are too broad Low
GHSA-5pq3-h73f-66hr was published for aws-cdk-lib (npm) Mar 24, 2025
HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate... Critical Unreviewed
CVE-2025-25535 was published Mar 26, 2025
The WatchGuard Mobile VPN with SSL Client on Windows does not properly configure directory... Moderate Unreviewed
CVE-2025-2781 was published Mar 29, 2025
The WatchGuard Terminal Services Agent on Windows does not properly configure directory... Moderate Unreviewed
CVE-2025-2782 was published Mar 29, 2025
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13... High Unreviewed
CVE-2025-24170 was published Apr 1, 2025
An integer overflow was addressed with improved input validation. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24195 was published Apr 1, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Critical Unreviewed
CVE-2025-24172 was published Apr 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24207 was published Apr 1, 2025
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13... High Unreviewed
CVE-2025-24234 was published Apr 1, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5,... Critical Unreviewed
CVE-2025-24238 was published Apr 1, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... High Unreviewed
CVE-2025-24277 was published Apr 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-24267 was published Apr 1, 2025
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-30465 was published Apr 1, 2025
Incorrect default permissions on the AMD Ryzen(TM) AI installation folder could allow an attacker... High Unreviewed
CVE-2025-0014 was published Apr 2, 2025
An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to... High Unreviewed
CVE-2025-29570 was published Apr 3, 2025
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate... High Unreviewed
CVE-2025-29504 was published Apr 3, 2025
The Simple Membership plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11088 was published Apr 5, 2025
Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to... High Unreviewed
CVE-2025-29801 was published Apr 8, 2025
A Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed package gerbera allows... High Unreviewed
CVE-2025-23386 was published Apr 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database