GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,846
Composer 5,059
Erlang 39
GitHub Actions 38
Go 2,688
Maven 6,134
npm 4,320
NuGet 760
pip 4,096
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,551

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,308 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mattermost versions 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to validate the user permission... Low Unreviewed

CVE-2025-13870 was published Dec 2, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed

CVE-2025-55221 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed

CVE-2025-55222 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed

CVE-2025-23417 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed

CVE-2024-49572 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed

CVE-2025-54850 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed

CVE-2025-20085 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed

CVE-2024-48882 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed

CVE-2025-54851 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed

CVE-2025-54848 was published Dec 1, 2025

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed

CVE-2025-54849 was published Dec 1, 2025

Astak CM-818T3 2.4GHz wireless security surveillance cameras contain an unauthenticated... High Unreviewed

CVE-2020-36873 was published Nov 27, 2025

ACE SECURITY WIP-90113 HD cameras contain an unauthenticated configuration disclosure... High Unreviewed

CVE-2020-36874 was published Nov 27, 2025

ESCAM QD-900 WIFI HD cameras contain an unauthenticated configuration disclosure vulnerability in... High Unreviewed

CVE-2020-36871 was published Nov 27, 2025

Tellion HN-2204AP routers contain an unauthenticated configuration disclosure vulnerability in... High Unreviewed

CVE-2019-25227 was published Nov 27, 2025

Dongyoung Media DM-AP240T/W wireless access points contain an unauthenticated configuration... High Unreviewed

CVE-2019-25226 was published Nov 27, 2025

SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs. This allows an... High Unreviewed

CVE-2025-13483 was published Nov 25, 2025

Shenzhen TVT Digital Technology Co., Ltd. NVMS-9000 firmware (used by many white-labeled DVR/NVR... High Unreviewed

CVE-2024-14007 was published Nov 24, 2025

Xtooltech Xtool AnyScan Android Application 4.40.40 is Missing Authentication for Critical... Moderate Unreviewed

CVE-2025-63435 was published Nov 24, 2025

Fluent Bit in_forward input plugin does not properly enforce the security.users authentication... Moderate Unreviewed

CVE-2025-12969 was published Nov 24, 2025

The Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO plugin for... Moderate Unreviewed

CVE-2025-11771 was published Nov 21, 2025

The affected products allow unauthenticated access to Open Network Video Interface Forum (ONVIF)... High Unreviewed

CVE-2025-64770 was published Nov 20, 2025

The affected product allows unauthenticated access to Real Time Streaming Protocol (RTSP)... High Unreviewed

CVE-2025-62674 was published Nov 20, 2025

An authentication bypass issue was discovered in Dasan Switch DS2924 web based interface,... Critical Unreviewed

CVE-2025-63206 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed

CVE-2025-34331 was published Nov 19, 2025

Previous1…53 Next

Previous 1 2 3 4 5 … 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,308 advisories