Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

17 advisories

Loading
Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows... Moderate Unreviewed
CVE-2025-27024 was published Jul 2, 2025
Software installed and running inside a Guest VM may conduct improper GPU system calls to prevent... Moderate Unreviewed
CVE-2025-46708 was published Jun 27, 2025
A improper handling of insufficient permissions or privileges in Fortinet FortiPAM 1.4.0 through... Moderate Unreviewed
CVE-2025-22256 was published Jun 10, 2025
An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow... Moderate Unreviewed
CVE-2025-2503 was published May 30, 2025
An Improper Handling of Insufficient Permissions or Privileges vulnerability in scripts used in B... Moderate Unreviewed
CVE-2024-8315 was published Mar 25, 2025
In Bluetooth Stack SW, there is a possible information disclosure due to a missing permission... Moderate Unreviewed
CVE-2025-20649 was published Mar 3, 2025
The product does not handle or incorrectly handles when it has insufficient privileges to access... Moderate Unreviewed
CVE-2024-6697 was published Feb 20, 2025
Dell SupportAssist for Business PCs version 3.4.0 contains a local Authentication Bypass... Moderate Unreviewed
CVE-2023-39249 was published Oct 17, 2024
In JetBrains TeamCity before 2024.03.1 commit status publisher didn't check project scope of the... Moderate Unreviewed
CVE-2024-35301 was published May 16, 2024
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. The... Moderate Unreviewed
CVE-2024-22077 was published Mar 20, 2024
A vulnerability was found in 3Scale, when used with Keycloak 15 (or RHSSO 7.5.0) and superiors.... Moderate Unreviewed
CVE-2024-0560 was published Feb 28, 2024
Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers... Moderate Unreviewed
CVE-2023-6189 was published Nov 22, 2023
Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient... Moderate Unreviewed
CVE-2023-43087 was published Nov 2, 2023
Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulnerability. A local attacker... Moderate Unreviewed
CVE-2023-32489 was published Aug 16, 2023
Insufficient permission checks in the REST API in Tribe29 Checkmk <= 2.1.0p27 and <= 2.2.0b4 ... Moderate Unreviewed
CVE-2023-2020 was published Apr 18, 2023
An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows... Moderate Unreviewed
CVE-2020-8219 was published May 24, 2022
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver package, where... Moderate Unreviewed
CVE-2022-21814 was published Feb 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database