GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,390
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,140
Maven 5,314
npm 3,800
NuGet 687
pip 3,478
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,490

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,107 advisories

Filter by severity

Sort by

Least recently updated

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but... Moderate Unreviewed

CVE-2023-0225 was published Apr 4, 2023

Bhima version 1.27.0 allows an authenticated attacker with regular user permissions to update... Moderate Unreviewed

CVE-2023-0944 was published Apr 5, 2023

socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms... High Unreviewed

CVE-2023-24626 was published Apr 8, 2023

Insufficient permissions in Ivanti Secure Access Client before version 22.8R1 allows a local... High Unreviewed

CVE-2024-13813 was published Feb 11, 2025

A vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC... High Unreviewed

CVE-2025-23403 was published Feb 11, 2025

Under specific conditions, the Central Management Console of the SAP BusinessObjects Business... High Unreviewed

CVE-2025-0064 was published Feb 11, 2025

When etcupdate encounters conflicts while merging files, it saves a version containing conflict... Moderate Unreviewed

CVE-2025-0374 was published Jan 30, 2025

Insecure Permissions vulnerability in asterisk v22 allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2024-57520 was published Feb 6, 2025

An issue was discovered in Akamai Enterprise Application Access (EAA) before 2025-01-17. If an... High Unreviewed

CVE-2025-24527 was published Jan 29, 2025

Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow... Moderate Unreviewed

CVE-2024-36294 was published Nov 13, 2024

IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a local... Moderate Unreviewed

CVE-2024-45657 was published Feb 4, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-21571 was published Jan 21, 2025

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile... High Unreviewed

CVE-2025-21564 was published Jan 21, 2025

Nedis SmartLife android app v1.4.0 was discovered to contain an API key disclosure vulnerability. High Unreviewed

CVE-2024-34897 was published Feb 3, 2025

Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow... Moderate Unreviewed

CVE-2024-36276 was published Nov 13, 2024

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2025-21566 was published Jan 21, 2025

Insecure permissions in Aginode GigaSwitch v5 allows attackers to access sensitive information... Moderate Unreviewed

CVE-2024-39967 was published Jan 16, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed

CVE-2025-21523 was published Jan 21, 2025

When Akka HTTP before 10.5.2 accepts file uploads via the FileUploadDirectives.fileUploadAll... Moderate Unreviewed

CVE-2023-33251 was published May 21, 2023

A privilege escalation vulnerability exists in the affected product. The vulnerability allows low... High Unreviewed

CVE-2024-37369 was published Jun 14, 2024

A privilege escalation vulnerability exists in the affected products which could allow a... High Unreviewed

CVE-2024-6435 was published Jul 16, 2024

CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The... High Unreviewed

CVE-2024-7513 was published Aug 14, 2024

Insecure Permissions vulnerability in CMSimple v.5.16 allows a remote attacker to obtain... High Unreviewed

CVE-2024-57547 was published Jan 28, 2025

An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed

CVE-2023-29092 was published May 9, 2023

An Incorrect Permission Assignment Vulnerability exists in the product and version listed above.... High Unreviewed

CVE-2025-24481 was published Jan 28, 2025

Previous 1 2 3 4 5 … 44 45 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,107 advisories