GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,889
Composer 5,066
Erlang 39
GitHub Actions 38
Go 2,701
Maven 6,140
npm 4,328
NuGet 761
pip 4,103
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,864

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

306 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Relatedcode's Messenger version 7bcd20b allows an authenticated external attacker to access... Moderate Unreviewed

CVE-2022-41708 was published Oct 20, 2022

Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard... High Unreviewed

CVE-2022-21203 was published Feb 11, 2022

An issue in modernwms v.1.0 allows an attacker view the MD5 hash of the administrator password... High Unreviewed

CVE-2024-57698 was published Apr 29, 2025

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when... Moderate Unreviewed

CVE-2024-23560 was published Apr 15, 2024

Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This... Low Unreviewed

CVE-2025-32697 was published Apr 10, 2025

An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web... High Unreviewed

CVE-2020-18329 was published Jan 26, 2023

A bug in popup notifications' interaction with WebAuthn made it easier for an attacker to trick a... Moderate Unreviewed

CVE-2024-4768 was published May 14, 2024

The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this... High Unreviewed

CVE-2022-48295 was published Feb 9, 2023

The SystemUI has a vulnerability in permission management. Successful exploitation of this... Moderate Unreviewed

CVE-2022-48296 was published Feb 9, 2023

The bundle management module lacks permission verification in some APIs. Successful exploitation... High Unreviewed

CVE-2022-48301 was published Feb 9, 2023

Insecure permissions in TSplus Remote Access v17.30 allow attackers to retrieve a list of all... Critical Unreviewed

CVE-2025-26318 was published Mar 4, 2025

An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix... High Unreviewed

CVE-2025-25871 was published Mar 14, 2025

A logic issue was addressed with improved restrictions. This issue is fixed in iTunes 12.13.3 for... High Unreviewed

CVE-2024-44193 was published Oct 2, 2024

An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via... High Unreviewed

CVE-2025-25711 was published Mar 12, 2025

In dhd_process_full_gscan_result of dhd_pno.c, there is a possible EoP due to an integer overflow... High Unreviewed

CVE-2024-56191 was published Mar 10, 2025

In wl_notify_gscan_event of wl_cfgscan.c, there is a possible out of bounds write due to a... High Unreviewed

CVE-2024-56192 was published Mar 10, 2025

Insecure Permissions vulnerability in Alvaria, Inc Unified IP Unified Director before v.7.2SP2... Critical Unreviewed

CVE-2024-56973 was published Feb 14, 2025

An improper access control issue in the VQL shell feature in Velociraptor Versions < 0.73.4... Low Unreviewed

CVE-2025-0914 was published Feb 27, 2025

Jenkins Role-based Authorization Strategy Plugin grants permissions even after they’ve been disabled Moderate

CVE-2023-28668 was published for org.jenkins-ci.plugins:role-strategy (Maven) Apr 2, 2023

Insufficient macro permission validation of The Document Foundation LibreOffice allows an... High Unreviewed

CVE-2023-6186 was published Dec 11, 2023

System files could be overwritten using the less command in Brocade Fabric OS before Brocade... High Unreviewed

CVE-2023-31926 was published Aug 2, 2023

The com.callassistant.android (aka AI Call Assistant & Screener) application 1.174 for Android... Moderate Unreviewed

CVE-2024-36062 was published Nov 8, 2024

EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to Incorrect Access Control. This... High Unreviewed

CVE-2024-53355 was published Feb 1, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Low Unreviewed

CVE-2024-54516 was published Jan 28, 2025

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.7... High Unreviewed

CVE-2024-54557 was published Jan 28, 2025

Previous 1…3…13 Next

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

306 advisories