GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,688
Composer 4,731
Erlang 35
GitHub Actions 29
Go 2,308
Maven 5,597
npm 3,949
NuGet 711
pip 3,727
Pub 12
RubyGems 920
Rust 964
Swift 38

Unreviewed advisories

All unreviewed 257,362

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

839 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SSL Verification Bypass vulnerabilities exist in ASPECT if administrator credentials become... High Unreviewed

CVE-2024-13956 was published May 22, 2025

Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use... Moderate Unreviewed

CVE-2025-4575 was published May 22, 2025

IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to... Moderate Unreviewed

CVE-2024-45641 was published May 20, 2025

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering... Moderate Unreviewed

CVE-2023-33861 was published May 20, 2025

Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does... Moderate Unreviewed

CVE-2025-32407 was published May 16, 2025

"This issue is limited to motherboards and does not affect laptops, desktop computers, or other... Critical Unreviewed

CVE-2025-3463 was published May 9, 2025

A vulnerability in certificate validation processing of Cisco Catalyst SD-WAN Manager, formerly... Moderate Unreviewed

CVE-2025-20157 was published May 7, 2025

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to authentication and authorization attacks due... Moderate Unreviewed

CVE-2025-3218 was published May 7, 2025

Improper certificate validation in Logstash's TCP output could lead to a man-in-the-middle (MitM)... Moderate Unreviewed

CVE-2025-37730 was published May 6, 2025

In Modem, there is a possible permission bypass due to improper certificate validation. This... Moderate Unreviewed

CVE-2025-20670 was published May 5, 2025

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to... High Unreviewed

CVE-2025-28169 was published Apr 23, 2025

Dell ECS version 3.8.1.4 and prior contain an Improper Certificate Validation vulnerability. An... Low Unreviewed

CVE-2025-26478 was published Apr 17, 2025

HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling... Low Unreviewed

CVE-2024-42193 was published Apr 15, 2025

Improper certificate validation in Ivanti Endpoint Manager before version 2024 SU1 or before... Moderate Unreviewed

CVE-2025-22459 was published Apr 8, 2025

A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). The... Moderate Unreviewed

CVE-2025-30000 was published Apr 8, 2025

An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to self sign... Moderate Unreviewed

CVE-2021-25635 was published Mar 21, 2025

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle ... Moderate Unreviewed

CVE-2025-0254 was published Mar 20, 2025

Improper certificate validation vulnerability in the update functionality in Synology BeeStation... Moderate Unreviewed

CVE-2024-10445 was published Mar 19, 2025

Improper certificate validation vulnerability in the LDAP utilities in Synology DiskStation... High Unreviewed

CVE-2024-10444 was published Mar 19, 2025

An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below... Moderate Unreviewed

CVE-2023-48785 was published Mar 14, 2025

An improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version... Moderate Unreviewed

CVE-2024-40590 was published Mar 14, 2025

Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration... High Unreviewed

CVE-2024-41724 was published Mar 10, 2025

Improper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP)... High Unreviewed

CVE-2024-43107 was published Mar 10, 2025

An improper certificate validation vulnerability has been reported to affect Helpdesk. If... High Unreviewed

CVE-2024-50394 was published Mar 7, 2025

An Improper Certificate Validation vulnerability could allow an authenticated malicious actor... Moderate Unreviewed

CVE-2025-23118 was published Mar 1, 2025

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

839 advisories