Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

15 advisories

Loading
Restricted shell rbash evasion in Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) allows the... Moderate Unreviewed
CVE-2025-27027 was published Jul 9, 2025
Sony XAV-AX8500 Bluetooth Improper Isolation Authentication Bypass Vulnerability. This... Moderate Unreviewed
CVE-2025-5476 was published Jun 23, 2025
Improper isolation of users in M-Files Server version before 25.3.14549 allows anonymous user to... Moderate Unreviewed
CVE-2025-3086 was published Apr 4, 2025
SolarWinds Service Desk is affected by a broken access control vulnerability. The issue allows... Moderate Unreviewed
CVE-2025-26393 was published Mar 17, 2025
An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks... Moderate Unreviewed
CVE-2025-21590 was published Mar 12, 2025
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell Moderate Unreviewed
CVE-2024-55456 was published Feb 3, 2025
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted... Moderate Unreviewed
CVE-2024-0137 was published Jan 28, 2025
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2024-57723 was published Jan 23, 2025
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2024-57721 was published Jan 23, 2025
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend. Moderate Unreviewed
CVE-2024-57720 was published Jan 23, 2025
vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse... Moderate Unreviewed
CVE-2024-35425 was published Nov 9, 2024
In Grafana, the wrong permission is applied to the alert rule write API endpoint, allowing users... Moderate Unreviewed
CVE-2024-8118 was published Sep 26, 2024
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,... Moderate Unreviewed
CVE-2024-20285 was published Aug 28, 2024
An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe)... Moderate Unreviewed
CVE-2024-30388 was published Apr 12, 2024
yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2023-29580 was published Apr 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database