Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

598 advisories

Loading
In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non... High Unreviewed
CVE-2025-36632 was published Jun 16, 2025
Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code... High Unreviewed
CVE-2025-46355 was published Jun 3, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... High Unreviewed
CVE-2025-23105 was published Jun 2, 2025
An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow... High Unreviewed
CVE-2025-2502 was published May 30, 2025
An issue was discovered in BeyondTrust Privilege Management for Mac before 5.7. An authenticated,... High Unreviewed
CVE-2021-3187 was published Dec 12, 2023
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast... High Unreviewed
CVE-2021-39967 was published Jan 4, 2022
An insecure file system permissions vulnerability in MSP360 Backup 8.0 allows a low privileged... High Unreviewed
CVE-2025-43596 was published May 22, 2025
An insecure file system permissions vulnerability in MSP360 Backup 4.3.1.115 allows a lower... High Unreviewed
CVE-2025-43595 was published May 2, 2025
A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve... High Unreviewed
CVE-2023-31358 was published May 13, 2025
A remote code execution vulnerability exists in the Windows agent component of SecureConnector... High Unreviewed
CVE-2025-4660 was published May 13, 2025
Foresight GC3 Launch Monitor 1.3.15.68 ships with a Target Communication Framework (TCF) service... High Unreviewed
CVE-2022-40187 was published Oct 13, 2022
Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve... High Unreviewed
CVE-2023-31359 was published May 13, 2025
Incorrect default permissions in the AMD Optimizing CPU Libraries (AOCL) installation directory... High Unreviewed
CVE-2024-21960 was published May 13, 2025
A DLL hijacking vulnerability in the AMD Optimizing CPU Libraries could allow an attacker to... High Unreviewed
CVE-2024-36339 was published May 13, 2025
AsusSwitch.exe on ASUS personal computers (running Windows) sets weak file permissions, leading... High Unreviewed
CVE-2022-36438 was published Oct 18, 2022
A vulnerability within the Software Updater functionality of Avira Security for Windows allowed... High Unreviewed
CVE-2022-3368 was published Oct 18, 2022
A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror... High Unreviewed
CVE-2025-3528 was published May 9, 2025
A privilege escalation vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9... High Unreviewed
CVE-2022-33182 was published Jul 6, 2023
Incorrect default permissions in the software installer for the Intel(R) Advisor before version... High Unreviewed
CVE-2021-33129 was published Feb 11, 2022
Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an... High Unreviewed
CVE-2022-21204 was published Feb 11, 2022
In navigateUpTo of Task.java, there is a possible way to launch an unexported intent handler due... High Unreviewed
CVE-2022-20441 was published Nov 9, 2022
In initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code... High Unreviewed
CVE-2022-20452 was published Nov 9, 2022
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions... High Unreviewed
CVE-2022-44557 was published Nov 10, 2022
The preset launcher module has a permission verification vulnerability. Successful exploitation... High Unreviewed
CVE-2022-44561 was published Nov 10, 2022
The power module has a vulnerability in permission verification. Successful exploitation of this... High Unreviewed
CVE-2022-44554 was published Nov 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database