Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

249 advisories

Loading
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... Moderate Unreviewed
CVE-2025-43699 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... Critical Unreviewed
CVE-2025-43698 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (DataMapper) allows... High Unreviewed
CVE-2025-43697 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... High Unreviewed
CVE-2025-43701 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... High Unreviewed
CVE-2025-43700 was published Jun 10, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through... Low Unreviewed
CVE-2025-26693 was published Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through... Low Unreviewed
CVE-2025-27563 was published Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2025-26691 was published Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2025-27247 was published Jun 8, 2025
SystemUI has an incorrect component protection setting, which allows access to specific information. Moderate Unreviewed
CVE-2024-46941 was published Jun 6, 2025
A potential security vulnerability has been identified in the HP Support Assistant for versions... High Unreviewed
CVE-2025-43026 was published Jun 5, 2025
CVE-2025-27703 is a privilege escalation vulnerability in the management console of Absolute... High Unreviewed
CVE-2025-27703 was published May 28, 2025
Relatedcode's Messenger version 7bcd20b allows an authenticated external attacker to access... Moderate Unreviewed
CVE-2022-41708 was published Oct 20, 2022
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard... High Unreviewed
CVE-2022-21203 was published Feb 11, 2022
An issue in modernwms v.1.0 allows an attacker view the MD5 hash of the administrator password... High Unreviewed
CVE-2024-57698 was published Apr 29, 2025
HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when... Moderate Unreviewed
CVE-2024-23560 was published Apr 15, 2024
Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This... Low Unreviewed
CVE-2025-32696 was published Apr 10, 2025
Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This... Low Unreviewed
CVE-2025-32697 was published Apr 10, 2025
This issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4,... High Unreviewed
CVE-2025-31184 was published Apr 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-30449 was published Apr 1, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... High Unreviewed
CVE-2025-30456 was published Apr 1, 2025
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web... High Unreviewed
CVE-2020-18329 was published Jan 26, 2023
A bug in popup notifications' interaction with WebAuthn made it easier for an attacker to trick a... Moderate Unreviewed
CVE-2024-4768 was published May 14, 2024
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this... High Unreviewed
CVE-2022-48295 was published Feb 9, 2023
The SystemUI has a vulnerability in permission management. Successful exploitation of this... Moderate Unreviewed
CVE-2022-48296 was published Feb 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database