GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,935
Composer 5,069
Erlang 39
GitHub Actions 38
Go 2,726
Maven 6,143
npm 4,331
NuGet 763
pip 4,107
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,299

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,383 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In multiple functions of WifiScanModeActivity.java, there is a possible way to bypass a device... High Unreviewed

CVE-2025-48599 was published Dec 8, 2025

In startAlwaysOnVpn of Vpn.java, there is a possible way to disable always-on VPN due to a logic... High Unreviewed

CVE-2025-48588 was published Dec 8, 2025

In getComponentName of MediaButtonReceiverHolder.java, there is a possible desync in persistence... High Unreviewed

CVE-2025-48615 was published Dec 8, 2025

In onSomePackagesChanged of VoiceInteractionManagerService.java, there is a possible way for a... High Unreviewed

CVE-2025-48620 was published Dec 8, 2025

In multiple functions of BaseBundle.java, there is a possible way to execute arbitrary code due... High Unreviewed

CVE-2025-48583 was published Dec 8, 2025

In multiple locations, there is a possible way to launch activities from the background due to a... High Unreviewed

CVE-2025-48572 was published Dec 8, 2025

In multiple locations, there is a possible way to leak audio files across user profiles due to a... High Unreviewed

CVE-2025-22420 was published Dec 8, 2025

In multiple locations, there is a possible bypass of user profile boundary with a forwarded... High Unreviewed

CVE-2025-48566 was published Dec 8, 2025

In multiple locations, there is a possible intent filter bypass due to a race condition. This... High Unreviewed

CVE-2025-48564 was published Dec 8, 2025

In multiple functions of Session.java, there is a possible way to view images belonging to a... High Unreviewed

CVE-2025-32329 was published Dec 8, 2025

In disassociate of DisassociationProcessor.java, there is a possible way for an app to continue... High Unreviewed

CVE-2025-48525 was published Dec 8, 2025

In multiple locations, there is a possible way to bypass the cross profile intent filter due to a... High Unreviewed

CVE-2025-48565 was published Dec 8, 2025

In grantAllowlistedPackagePermissions of SettingsSliceProvider.java, there is a possible way for... High Unreviewed

CVE-2025-48536 was published Dec 8, 2025

In multiple functions of NotificationStation.java, there is a possible cross-profile information... High Unreviewed

CVE-2025-48555 was published Dec 8, 2025

In multiple functions of Session.java, there is a possible way to view images belonging to a... High Unreviewed

CVE-2025-32328 was published Dec 8, 2025

In connectInternal of MediaBrowser.java, there is a possible way to access while in use... High Unreviewed

CVE-2025-48580 was published Dec 8, 2025

In sendCommand of MediaSessionRecord.java, there is a possible way to launch the foreground... High Unreviewed

CVE-2025-48573 was published Dec 8, 2025

Some endpoints in vulnerability-lookup that modified application state (e.g. changing database... High Unreviewed

CVE-2025-42616 was published Dec 8, 2025

In affected versions, vulnerability-lookup handled user-controlled content in comments and... High Unreviewed

CVE-2025-42620 was published Dec 8, 2025

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common latest on all platforms... High Unreviewed

CVE-2025-9809 was published Dec 8, 2025

In affected versions, vulnerability-lookup did not track or limit failed One-Time Password (OTP)... High Unreviewed

CVE-2025-42615 was published Dec 8, 2025

FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with... High Unreviewed

CVE-2025-66461 was published Dec 8, 2025

Race condition vulnerability in the network module. Impact: Successful exploitation of this... High Unreviewed

CVE-2025-66327 was published Dec 8, 2025

Multi-thread race condition vulnerability in the network management module. Impact: Successful... High Unreviewed

CVE-2025-66328 was published Dec 8, 2025

A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry... High Unreviewed

CVE-2025-12956 was published Dec 8, 2025

Previous 12…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

106,383 advisories