Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,056 advisories

Loading
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The Gboard used by different... High Unreviewed
CVE-2022-36441 was published Jan 10, 2023
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The device allows the... High Unreviewed
CVE-2022-36443 was published Jan 10, 2023
Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier... High Unreviewed
CVE-2025-4433 was published May 30, 2025
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable... High Unreviewed
CVE-2025-24916 was published May 23, 2025
In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non... High Unreviewed
CVE-2025-24917 was published May 23, 2025
In Medtronic MinMed 508 and Medtronic Minimed Paradigm Insulin Pumps, Versions, MiniMed 508 pump ... High Unreviewed
CVE-2019-10964 was published May 24, 2022
This High severity PrivEsc (Privilege Escalation) vulnerability was introduced in versions: 9.12... High Unreviewed
CVE-2025-22157 was published May 20, 2025
An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration... High Unreviewed
CVE-2022-42717 was published Oct 12, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-30712 was published Apr 15, 2025
Microsoft Defender for Endpoint Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-47161 was published May 15, 2025
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS... High Unreviewed
CVE-2025-31221 was published May 13, 2025
This issue was addressed through improved state management. This issue is fixed in watchOS 11.5,... High Unreviewed
CVE-2025-31212 was published May 13, 2025
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2025-31247 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6,... High Unreviewed
CVE-2025-31232 was published May 13, 2025
Improper access control in the memory controller configurations for some Intel(R) Xeon(R) 6... High Unreviewed
CVE-2025-20100 was published May 13, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-31260 was published May 13, 2025
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29973 was published May 13, 2025
Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable... High Unreviewed
CVE-2022-38743 was published Oct 18, 2022
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call. High Unreviewed
CVE-2025-21469 was published May 6, 2025
Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter. High Unreviewed
CVE-2025-21470 was published May 6, 2025
Clustered Data ONTAP versions 9.11.1 through 9.11.1P2 with SnapLock configured FlexGroups are... High Unreviewed
CVE-2022-23241 was published Oct 19, 2022
Improper access control in Azure allows an unauthorized attacker to disclose information over a... High Unreviewed
CVE-2025-33072 was published May 9, 2025
OcoMon 4.0RC1 is vulnerable to Incorrect Access Control. Through a request the user can obtain... High Unreviewed
CVE-2022-40798 was published Oct 19, 2022
Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI... High Unreviewed
CVE-2023-20587 was published Feb 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database