GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,434
Composer 4,826
Erlang 36
GitHub Actions 32
Go 2,426
Maven 5,833
npm 4,058
NuGet 723
pip 3,848
Pub 12
RubyGems 934
Rust 1,006
Swift 38

Unreviewed advisories

All unreviewed 265,093

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

606 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Certain Draytek products are affected by Insecure Permissions. This affects AP903 v1.4.18 and... High Unreviewed

CVE-2025-44643 was published Aug 4, 2025

Insecure permissions in the script /etc/init.d/lighttpd in AK-Nord USB-Server-LXL Firmware v0.0... High Unreviewed

CVE-2025-52361 was published Aug 1, 2025

In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory... High Unreviewed

CVE-2025-54530 was published Jul 28, 2025

Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update... High Unreviewed

CVE-2025-45467 was published Jul 25, 2025

During the AWS Client VPN client installation on Windows devices, the install process references... High Unreviewed

CVE-2025-8069 was published Jul 23, 2025

An incorrect permissions vulnerability was reported in Elliptic Labs Virtual Lock Sensor that... High Unreviewed

CVE-2025-0886 was published Jul 17, 2025

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to... High Unreviewed

CVE-2024-13972 was published Jul 17, 2025

Several services in Honor Device Co., Ltd Honor PC Manager v16.0.0.118 was discovered to connect... High Unreviewed

CVE-2025-46014 was published Jun 30, 2025

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non... High Unreviewed

CVE-2025-36632 was published Jun 16, 2025

Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code... High Unreviewed

CVE-2025-46355 was published Jun 3, 2025

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... High Unreviewed

CVE-2025-23105 was published Jun 2, 2025

An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow... High Unreviewed

CVE-2025-2502 was published May 30, 2025

An insecure file system permissions vulnerability in MSP360 Backup 8.0 allows a low privileged... High Unreviewed

CVE-2025-43596 was published May 22, 2025

A remote code execution vulnerability exists in the Windows agent component of SecureConnector... High Unreviewed

CVE-2025-4660 was published May 13, 2025

Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve... High Unreviewed

CVE-2023-31359 was published May 13, 2025

A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve... High Unreviewed

CVE-2023-31358 was published May 13, 2025

A DLL hijacking vulnerability in the AMD Optimizing CPU Libraries could allow an attacker to... High Unreviewed

CVE-2024-36339 was published May 13, 2025

Incorrect default permissions in the AMD Optimizing CPU Libraries (AOCL) installation directory... High Unreviewed

CVE-2024-21960 was published May 13, 2025

A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror... High Unreviewed

CVE-2025-3528 was published May 9, 2025

An insecure file system permissions vulnerability in MSP360 Backup 4.3.1.115 allows a lower... High Unreviewed

CVE-2025-43595 was published May 2, 2025

Multiple SEIKO EPSON printer drivers for Windows OS are configured with an improper access... High Unreviewed

CVE-2025-42598 was published Apr 28, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for... High Unreviewed

CVE-2025-32981 was published Apr 25, 2025

When installing Nessus to a non-default location on a Windows host, Nessus versions prior to 10.8... High Unreviewed

CVE-2025-24914 was published Apr 18, 2025

Vulnerability in the RAS Security component of Oracle Database Server. Supported versions that... High Unreviewed

CVE-2025-30701 was published Apr 15, 2025

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). ... High Unreviewed

CVE-2025-30706 was published Apr 15, 2025

Previous 1 2 3 4 5 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

606 advisories