GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,702
Composer 5,025
Erlang 39
GitHub Actions 38
Go 2,662
Maven 6,115
npm 4,289
NuGet 760
pip 4,069
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,668

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

41 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass vulnerability. An... Critical Unreviewed

CVE-2023-32493 was published Aug 16, 2023

Protection mechanism failure in some Intel DCM software before version 5.2 may allow an... Critical Unreviewed

CVE-2023-31273 was published Nov 14, 2023

Vulnerability of incorrect service logic in the WindowManagerServices module.Successful... Critical Unreviewed

CVE-2023-52378 was published Feb 18, 2024

Protection mechanism failure issue exists in RevoWorks SCVX prior to scvimage4.10.21_1013 (when... Critical Unreviewed

CVE-2024-25091 was published Mar 1, 2024

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27665 was published Mar 5, 2025

Spring Security authorization bypass for method security annotations on private methods Critical

CVE-2025-41232 was published for org.springframework.security:spring-security-aspects (Maven) May 21, 2025

Credited to tomabai

An attacker was able to bypass the `connect-src` directive of a Content Security Policy by... Critical Unreviewed

CVE-2025-6427 was published Jun 26, 2025

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6,... Critical Unreviewed

CVE-2025-43261 was published Jul 30, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Critical Unreviewed

CVE-2025-43273 was published Jul 30, 2025

Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the... Critical Unreviewed

CVE-2025-54143 was published Aug 19, 2025

Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure... Critical Unreviewed

CVE-2025-43728 was published Aug 27, 2025

The Microsoft vulnerable driver block list is implemented as Windows Defender Application Control... Critical Unreviewed

CVE-2025-59033 was published Sep 8, 2025

Picklescan is Vulnerable to Unsafe Globals Check Bypass through Subclass Imports Critical

CVE-2025-10157 was published for picklescan (pip) Sep 10, 2025

Credited to davcohen

Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check Critical

CVE-2025-10156 was published for picklescan (pip) Sep 10, 2025

Picklescan Bypass is Possible via File Extension Mismatch Critical

CVE-2025-10155 was published for picklescan (pip) Sep 10, 2025

Duplicate Advisory: Picklescan is Vulnerable to Unsafe Globals Check Bypass through Subclass Imports Critical

GHSA-hf6h-9wq7-hmjg was published for picklescan (pip) Sep 17, 2025 • withdrawn

Previous 12Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

41 advisories