GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,435
Composer 4,826
Erlang 36
GitHub Actions 32
Go 2,426
Maven 5,833
npm 4,058
NuGet 723
pip 3,849
Pub 12
RubyGems 941
Rust 1,006
Swift 38

Unreviewed advisories

All unreviewed 265,152

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

417 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

MacOS version of GIMP bundles a Python interpreter that inherits the Transparency, Consent, and... Moderate Unreviewed

CVE-2025-8672 was published Aug 11, 2025

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager ... Moderate Unreviewed

CVE-2024-39347 was published Aug 7, 2025

4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions. Moderate Unreviewed

CVE-2024-55398 was published Aug 6, 2025

CODESYS Runtime Toolkit-based products may expose sensitive files to local low-privileged... Moderate Unreviewed

CVE-2025-41658 was published Aug 4, 2025

CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-49082 was published Jul 31, 2025

CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-49084 was published Jul 31, 2025

CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-54085 was published Jul 31, 2025

An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the... Moderate Unreviewed

CVE-2025-41665 was published Jul 8, 2025

The Anonymous Restricted Content plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-11089 was published Jul 7, 2025

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local... Moderate Unreviewed

CVE-2025-39201 was published Jun 24, 2025

The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple... Moderate Unreviewed

CVE-2025-5963 was published Jun 20, 2025

The Phoenix Code's configuration on macOS, specifically the presence of entitlements: "com.apple... Moderate Unreviewed

CVE-2025-5255 was published Jun 20, 2025

Local privilege escalation due to insecure file permissions. The following products are affected:... Moderate Unreviewed

CVE-2025-48959 was published Jun 4, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Moderate Unreviewed

CVE-2025-31261 was published May 30, 2025

Use of entitlement "com.apple.security.cs.disable-library-validation" and lack of launch and... Moderate Unreviewed

CVE-2025-4081 was published May 29, 2025

In some cases, Kea log files or lease files may be world-readable. This issue affects Kea... Moderate Unreviewed

CVE-2025-32803 was published May 28, 2025

On macOS systems, by utilizing a Launch Agent and loading the viscosity_openvpn process from the... Moderate Unreviewed

CVE-2025-4412 was published May 27, 2025

The default mode of pseudo terminals (PTYs) allocated by Screen was changed from 0620 to 0622,... Moderate Unreviewed

CVE-2025-46803 was published May 26, 2025

Windows permissions for ASPECT configuration toolsets are not fully secured allow-ing exposure of... Moderate Unreviewed

CVE-2024-13948 was published May 22, 2025

Incorrect default permissions in some Intel(R) Gaudi(R) software installers before version 1.18... Moderate Unreviewed

CVE-2024-45067 was published May 15, 2025

Incorrect Default Permissions for some Intel(R) RealSense™ SDK software before version 2.56.2 may... Moderate Unreviewed

CVE-2025-20095 was published May 13, 2025

Incorrect default permissions for some Endurance Gaming Mode software installers may allow an... Moderate Unreviewed

CVE-2024-47550 was published May 13, 2025

Incorrect default permissions for some Intel(R) Graphics Driver installers may allow an... Moderate Unreviewed

CVE-2024-28954 was published May 13, 2025

Permission control vulnerability in the media library module Impact: Successful exploitation of... Moderate Unreviewed

CVE-2025-46587 was published May 6, 2025

Permission control vulnerability in the contacts module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-46586 was published May 6, 2025

Previous 1 2 3 4 5 … 16 17 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

417 advisories