Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

878 advisories

Loading
A potential security vulnerability has been identified in the HP Support Assistant, which allows... Moderate Unreviewed
CVE-2025-43019 was published Jul 8, 2025
An issue in NetEase (Hangzhou) Network Co., Ltd NeacSafe64 Driver before v1.0.0.8 allows... Moderate Unreviewed
CVE-2025-45737 was published Jun 27, 2025
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.1),... Moderate Unreviewed
CVE-2024-41797 was published Jun 10, 2025
An Improper Privilege Management vulnerability [CWE-269] affecting Fortinet FortiOS version 7.6.0... Moderate Unreviewed
CVE-2025-22254 was published Jun 10, 2025
The HoYoVerse (formerly miHoYo) Genshin Impact mhyprot2.sys 1.0.0.0 anti-cheat driver does not... Moderate Unreviewed
CVE-2020-36603 was published Sep 15, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-35775 was published Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-35774 was published Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-35780 was published Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-35782 was published Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-35781 was published Aug 10, 2022
When a notification relating to low battery appears for a user with whom the device has been... Moderate Unreviewed
CVE-2025-4975 was published May 23, 2025
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4... Moderate Unreviewed
CVE-2022-32781 was published Sep 25, 2022
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4... Moderate Unreviewed
CVE-2022-32782 was published Sep 25, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Moderate Unreviewed
CVE-2025-24183 was published May 19, 2025
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user... Moderate Unreviewed
CVE-2024-22239 was published Feb 6, 2024
Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation. ACL are... Moderate Unreviewed
CVE-2025-4649 was published May 13, 2025
An authenticated user without user-management permissions could view other users' account... Moderate Unreviewed
CVE-2025-46745 was published May 12, 2025
A suspended or recently logged-out user could continue to interact with Blueframe until the time... Moderate Unreviewed
CVE-2025-46741 was published May 12, 2025
In Simple Exam Reviewer Management System v1.0 the User List function has improper access control... Moderate Unreviewed
CVE-2022-42197 was published Oct 20, 2022
An authenticated attacker could read Nessus Debug Log file attachments from the web UI without... Moderate Unreviewed
CVE-2022-33757 was published Oct 25, 2022
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid... Moderate Unreviewed
CVE-2024-20282 was published Apr 3, 2024
The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and... Moderate Unreviewed
CVE-2022-3419 was published Oct 31, 2022
Insufficient control flow management in the firmware for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2021-0103 was published Feb 11, 2022
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-3438 was published May 2, 2025
There is a Permission Management and Access Control vulnerability in the GoldenDB database... Moderate Unreviewed
CVE-2025-46576 was published Apr 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database