Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,046 advisories

Loading
Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission... Moderate Unreviewed
CVE-2025-21106 was published Feb 20, 2025
Incorrect default permissions for some Intel(R) GPA and Intel(R) GPA Framework software... Moderate Unreviewed
CVE-2024-42419 was published Feb 13, 2025
Incorrect default permissions for some Intel(R) DSA installer for Windows before version 24.2.19... Moderate Unreviewed
CVE-2024-32942 was published Feb 13, 2025
Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed
CVE-2023-31360 was published Feb 11, 2025
Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed
CVE-2024-11468 was published Feb 5, 2025
Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed
CVE-2025-22918 was published Feb 3, 2025
A vulnerability in the NetExtender Windows client log export function allows unauthorized access... High Unreviewed
CVE-2025-23007 was published Jan 30, 2025
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2025-24826 was published Jan 28, 2025
CMSimple 5.16 allows the user to edit log.php file via print page. Critical Unreviewed
CVE-2024-57548 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Critical Unreviewed
CVE-2025-24174 was published Jan 28, 2025
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2025-24176 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed
CVE-2025-24140 was published Jan 28, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-24107 was published Jan 28, 2025
This issue was addressed with improved message validation. This issue is fixed in macOS Sequoia... Critical Unreviewed
CVE-2025-24135 was published Jan 28, 2025
A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed
CVE-2025-24085 was published Jan 28, 2025
Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed
CVE-2025-0543 was published Jan 25, 2025
Weak default folder permissions Moderate Unreviewed
CVE-2024-55930 was published Jan 23, 2025
A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated... Critical Unreviewed
CVE-2025-20156 was published Jan 22, 2025
In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed
CVE-2024-49742 was published Jan 22, 2025
In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to... High Unreviewed
CVE-2024-49737 was published Jan 22, 2025
In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed
CVE-2024-49736 was published Jan 22, 2025
In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs... High Unreviewed
CVE-2024-34730 was published Jan 22, 2025
WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application... Critical Unreviewed
CVE-2024-57032 was published Jan 17, 2025
Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to... Moderate Unreviewed
CVE-2024-40514 was published Jan 17, 2025
An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210... Critical Unreviewed
CVE-2024-57684 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database