GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,405

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

525 advisories

Filter by severity

Sort by

Least recently updated

Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed

CVE-2023-31360 was published Feb 11, 2025

Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed

CVE-2024-11468 was published Feb 5, 2025

Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed

CVE-2025-22918 was published Feb 3, 2025

A vulnerability in the NetExtender Windows client log export function allows unauthorized access... High Unreviewed

CVE-2025-23007 was published Jan 30, 2025

A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... High Unreviewed

CVE-2025-24176 was published Jan 28, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-24107 was published Jan 28, 2025

A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed

CVE-2025-24085 was published Jan 28, 2025

Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed

CVE-2025-0543 was published Jan 25, 2025

In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed

CVE-2024-49742 was published Jan 22, 2025

In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to... High Unreviewed

CVE-2024-49737 was published Jan 22, 2025

In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed

CVE-2024-49736 was published Jan 22, 2025

In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs... High Unreviewed

CVE-2024-34730 was published Jan 22, 2025

In PRIMX ZED Enterprise up to 2024.3, technical files stored in local folders with common user... High Unreviewed

CVE-2024-46464 was published Jan 10, 2025

Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed

CVE-2024-56447 was published Jan 8, 2025

Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444... High Unreviewed

CVE-2023-28739 was published Jan 7, 2025

An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated... High Unreviewed

CVE-2021-27285 was published Jan 7, 2025

there is a possible biometric bypass due to an unusual root cause. This could lead to local... High Unreviewed

CVE-2024-53840 was published Jan 3, 2025

In startListeningForDeviceStateChanges, there is a possible Permission Bypass due to a confused... High Unreviewed

CVE-2024-53841 was published Jan 3, 2025

there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to... High Unreviewed

CVE-2024-11624 was published Jan 3, 2025

there is a possible biometric bypass due to an unusual root cause. This could lead to local... High Unreviewed

CVE-2024-53835 was published Jan 3, 2025

In isPackageDeviceAdmin of PackageManagerService.java, there is a possible edge case which could... High Unreviewed

CVE-2024-43769 was published Jan 3, 2025

Some Huawei wearables have a permission management vulnerability. High Unreviewed

CVE-2021-37000 was published Dec 28, 2024

Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A... High Unreviewed

CVE-2024-12903 was published Dec 23, 2024

Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00... High Unreviewed

CVE-2024-4229 was published Dec 19, 2024

Keyfactor Command before 12.5.0 has Incorrect Access Control: access tokens are over permissioned... High Unreviewed

CVE-2024-49202 was published Dec 18, 2024

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

525 advisories