Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,715
Erlang
34
GitHub Actions
28
Go
2,302
Maven
5,000+
npm
3,946
NuGet
711
pip
3,716
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

632 advisories

Loading
An issue was discovered in BeyondTrust Privilege Management for Mac before 5.7. An authenticated,... High Unreviewed
CVE-2021-3187 was published Dec 12, 2023
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast... High Unreviewed
CVE-2021-39967 was published Jan 4, 2022
Improper Preservation of Permissions in xxl-job High
CVE-2024-42681 was published for com.xuxueli:xxl-job-core (Maven) Aug 15, 2024
AnonySE26
An insecure file system permissions vulnerability in MSP360 Backup 8.0 allows a low privileged... High Unreviewed
CVE-2025-43596 was published May 22, 2025
An insecure file system permissions vulnerability in MSP360 Backup 4.3.1.115 allows a lower... High Unreviewed
CVE-2025-43595 was published May 2, 2025
Fluent Fluentd and Fluent-ui use default password High
CVE-2020-21514 was published for fluentd (RubyGems) Apr 4, 2023
A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve... High Unreviewed
CVE-2023-31358 was published May 13, 2025
A remote code execution vulnerability exists in the Windows agent component of SecureConnector... High Unreviewed
CVE-2025-4660 was published May 13, 2025
Foresight GC3 Launch Monitor 1.3.15.68 ships with a Target Communication Framework (TCF) service... High Unreviewed
CVE-2022-40187 was published Oct 13, 2022
Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve... High Unreviewed
CVE-2023-31359 was published May 13, 2025
A DLL hijacking vulnerability in the AMD Optimizing CPU Libraries could allow an attacker to... High Unreviewed
CVE-2024-36339 was published May 13, 2025
Incorrect default permissions in the AMD Optimizing CPU Libraries (AOCL) installation directory... High Unreviewed
CVE-2024-21960 was published May 13, 2025
AsusSwitch.exe on ASUS personal computers (running Windows) sets weak file permissions, leading... High Unreviewed
CVE-2022-36438 was published Oct 18, 2022
A vulnerability within the Software Updater functionality of Avira Security for Windows allowed... High Unreviewed
CVE-2022-3368 was published Oct 18, 2022
A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror... High Unreviewed
CVE-2025-3528 was published May 9, 2025
A privilege escalation vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9... High Unreviewed
CVE-2022-33182 was published Jul 6, 2023
Incorrect default permissions in the software installer for the Intel(R) Advisor before version... High Unreviewed
CVE-2021-33129 was published Feb 11, 2022
Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an... High Unreviewed
CVE-2022-21204 was published Feb 11, 2022
In navigateUpTo of Task.java, there is a possible way to launch an unexported intent handler due... High Unreviewed
CVE-2022-20441 was published Nov 9, 2022
In initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code... High Unreviewed
CVE-2022-20452 was published Nov 9, 2022
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions... High Unreviewed
CVE-2022-44557 was published Nov 10, 2022
The preset launcher module has a permission verification vulnerability. Successful exploitation... High Unreviewed
CVE-2022-44561 was published Nov 10, 2022
The power module has a vulnerability in permission verification. Successful exploitation of this... High Unreviewed
CVE-2022-44554 was published Nov 10, 2022
NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for... High Unreviewed
CVE-2025-32981 was published Apr 25, 2025
A potential security vulnerability has been identified in the HP Jumpstart software, which might... High Unreviewed
CVE-2022-1038 was published Dec 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database