GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,752

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,182 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build... Low Unreviewed

CVE-2025-52992 was published Jun 27, 2025

Canon EOS Webcam Utility Pro for MAC OS version 2.3d (2.3.29) and earlier contains an improper... Moderate Unreviewed

CVE-2025-5995 was published Jun 26, 2025

Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of... High Unreviewed

CVE-2025-36537 was published Jun 26, 2025

cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with... Moderate Unreviewed

CVE-2024-11584 was published Jun 26, 2025

Sangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command. Moderate Unreviewed

CVE-2025-52923 was published Jun 22, 2025

pkg_postinst in the Gentoo ebuild for Slurm through 22.05.3 unnecessarily calls chown to assign... Critical Unreviewed

CVE-2020-36770 was published Jan 15, 2024

A vulnerability was found in logrotate in how the state file is created. The state file is used... Moderate Unreviewed

CVE-2022-1348 was published May 26, 2022

A privacy issue was addressed with improved handling of files. This issue is fixed in macOS... Moderate Unreviewed

CVE-2024-23223 was published Jan 23, 2024

Local privilege escalation due to insecure folder permissions. The following products are... High Unreviewed

CVE-2025-48961 was published Jun 4, 2025

IBM Application Gateway 19.12 through 24.09 could allow a local privileged user to perform... Moderate Unreviewed

CVE-2024-45655 was published Jun 3, 2025

Permission management vulnerability in the multi-screen interaction module. Successful... High Unreviewed

CVE-2023-52116 was published Jan 16, 2024

In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new... High Unreviewed

CVE-2025-20298 was published Jun 2, 2025

An issue was discovered in Zoho Application Control Plus before version 10.0.511. The Element... Moderate Unreviewed

CVE-2020-15595 was published May 24, 2022

In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to... Critical Unreviewed

CVE-2017-20148 was published Sep 21, 2022

Netwrix Directory Manager (formerly Imanami GroupID) before and including v.11.0.0.0 and after v... Moderate Unreviewed

CVE-2025-48747 was published May 28, 2025

Code by Zapier before 2022-08-17 allowed intra-account privilege escalation that included... Critical Unreviewed

CVE-2022-28802 was published Sep 22, 2022

Crestron AirMedia for Windows before 5.5.1.84 has insecure inherited permissions, which leads to... High Unreviewed

CVE-2022-40298 was published Sep 25, 2022

For a short time they PTY is set to mode 666, allowing any user on the system to connect to the... Moderate Unreviewed

CVE-2025-46802 was published May 26, 2025

A Privilege Escalation vulnerability has been found in ProactivaNet v3.24.0.0 from Grupo Espiral... High Unreviewed

CVE-2025-40672 was published May 26, 2025

Insecure permissions in autodeploy-layer v1.2.0 allows attackers to escalate privileges and... High Unreviewed

CVE-2025-45472 was published May 22, 2025

Insecure permissions in measure-cold-start v1.4.1 allows attackers to escalate privileges and... High Unreviewed

CVE-2025-45471 was published May 22, 2025

In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3... Low Unreviewed

CVE-2019-13535 was published May 24, 2022

Insecure permissions in fc-stable-diffusion-plus v1.0.18 allows attackers to escalate privileges... High Unreviewed

CVE-2025-45468 was published May 22, 2025

Packages downloaded by Checkmk's automatic agent updates on Linux and Solaris have incorrect... Moderate Unreviewed

CVE-2025-32915 was published May 22, 2025

Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework... High Unreviewed

CVE-2025-3944 was published May 22, 2025

Previous 1 2 3 4 5 … 47 48 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,182 advisories