Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,233 advisories

Loading
Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an... High Unreviewed
CVE-2025-33056 was published Jun 10, 2025
Improper access control in Windows Installer allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-32714 was published Jun 10, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... High Unreviewed
CVE-2025-43586 was published Jun 10, 2025
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The device allows the... High Unreviewed
CVE-2022-36443 was published Jan 10, 2023
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The Gboard used by different... High Unreviewed
CVE-2022-36441 was published Jan 10, 2023
Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier... High Unreviewed
CVE-2025-4433 was published May 30, 2025
Apache Commons Improper Access Control vulnerability High
CVE-2025-48734 was published for commons-beanutils:commons-beanutils (Maven) May 28, 2025
Rancher does not Properly Validate Account Bindings in SAML Authentication Enables User Impersonation on First Login High
CVE-2025-23389 was published for github.com/rancher/rancher (Go) Feb 27, 2025
AnonySE26
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable... High Unreviewed
CVE-2025-24916 was published May 23, 2025
In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non... High Unreviewed
CVE-2025-24917 was published May 23, 2025
In Medtronic MinMed 508 and Medtronic Minimed Paradigm Insulin Pumps, Versions, MiniMed 508 pump ... High Unreviewed
CVE-2019-10964 was published May 24, 2022
An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration... High Unreviewed
CVE-2022-42717 was published Oct 12, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-30712 was published Apr 15, 2025
Microsoft Defender for Endpoint Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-47161 was published May 15, 2025
Reflex vulnerable to private state fields modification High
CVE-2025-47425 was published for reflex (pip) May 15, 2025
adhami3310 masenf
Kastier1
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS... High Unreviewed
CVE-2025-31221 was published May 13, 2025
This issue was addressed through improved state management. This issue is fixed in watchOS 11.5,... High Unreviewed
CVE-2025-31212 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6,... High Unreviewed
CVE-2025-31232 was published May 13, 2025
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2025-31247 was published May 13, 2025
Improper access control in the memory controller configurations for some Intel(R) Xeon(R) 6... High Unreviewed
CVE-2025-20100 was published May 13, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-31260 was published May 13, 2025
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29973 was published May 13, 2025
Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable... High Unreviewed
CVE-2022-38743 was published Oct 18, 2022
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call. High Unreviewed
CVE-2025-21469 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database