Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

587 advisories

Loading
Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of... High Unreviewed
CVE-2025-36537 was published Jun 26, 2025
Local privilege escalation due to insecure folder permissions. The following products are... High Unreviewed
CVE-2025-48961 was published Jun 4, 2025
Permission management vulnerability in the multi-screen interaction module. Successful... High Unreviewed
CVE-2023-52116 was published Jan 16, 2024
In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new... High Unreviewed
CVE-2025-20298 was published Jun 2, 2025
Crestron AirMedia for Windows before 5.5.1.84 has insecure inherited permissions, which leads to... High Unreviewed
CVE-2022-40298 was published Sep 25, 2022
A Privilege Escalation vulnerability has been found in ProactivaNet v3.24.0.0 from Grupo Espiral... High Unreviewed
CVE-2025-40672 was published May 26, 2025
Insecure permissions in autodeploy-layer v1.2.0 allows attackers to escalate privileges and... High Unreviewed
CVE-2025-45472 was published May 22, 2025
Insecure permissions in measure-cold-start v1.4.1 allows attackers to escalate privileges and... High Unreviewed
CVE-2025-45471 was published May 22, 2025
Insecure permissions in fc-stable-diffusion-plus v1.0.18 allows attackers to escalate privileges... High Unreviewed
CVE-2025-45468 was published May 22, 2025
Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework... High Unreviewed
CVE-2025-3944 was published May 22, 2025
GStreamer Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-2759 was published May 22, 2025
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and... High Unreviewed
CVE-2025-34025 was published May 22, 2025
If folder security is misconfigured for Actian Zen PSQL BEFORE Patch Update 1 for Zen 15 SP1 (v15... High Unreviewed
CVE-2022-40756 was published Oct 1, 2022
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... High Unreviewed
CVE-2025-40574 was published May 13, 2025
A vulnerability has been identified in SIRIUS 3RK3 Modular Safety System (MSS) (All versions),... High Unreviewed
CVE-2025-24009 was published May 13, 2025
socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms... High Unreviewed
CVE-2023-24626 was published Apr 8, 2023
IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there... High Unreviewed
CVE-2025-26169 was published May 7, 2025
IXON VPN Client before 1.4.4 on Linux and macOS allows Local Privilege Escalation to root because... High Unreviewed
CVE-2025-26168 was published May 7, 2025
A code injection vulnerability in the Debian package component of Taegis Endpoint Agent (Linux)... High Unreviewed
CVE-2024-13861 was published Apr 11, 2025
Incorrect Permission Assignment for Critical Resource vulnerability in ABB Automation Builder... High Unreviewed
CVE-2025-3394 was published Apr 30, 2025
OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a... High Unreviewed
CVE-2022-44725 was published Nov 18, 2022
CBRN-Analysis before 22 has weak file permissions under Public Profile, leading to disclosure of... High Unreviewed
CVE-2022-45193 was published Nov 12, 2022
An incorrect permission assignment vulnerability in the PostgreSQL commands of the USG FLEX H... High Unreviewed
CVE-2025-1731 was published Apr 22, 2025
Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for... High Unreviewed
CVE-2022-46792 was published Dec 8, 2022
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... High Unreviewed
CVE-2022-30354 was published Oct 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database