GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,711
Composer 4,851
Erlang 36
GitHub Actions 35
Go 2,481
Maven 5,897
npm 4,098
NuGet 734
pip 3,914
Pub 12
RubyGems 945
Rust 1,016
Swift 39

Unreviewed advisories

All unreviewed 267,726

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,195 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Multiple i-フィルター products contain an issue with incorrect default permissions. If this... High Unreviewed

CVE-2025-57846 was published Aug 27, 2025

The configuration of Cursor on macOS, specifically the "RunAsNode" fuse enabled, allows a local... Moderate Unreviewed

CVE-2025-9190 was published Aug 26, 2025

The configuration of Mosh-Pro on macOS, specifically the "RunAsNode" fuse enabled, allows a local... Moderate Unreviewed

CVE-2025-53811 was published Aug 26, 2025

The configuration of Nozbe on macOS, specifically the "RunAsNode" fuse enabled, allows a local... Moderate Unreviewed

CVE-2025-53813 was published Aug 26, 2025

MacOS version of GIMP bundles a Python interpreter that inherits the Transparency, Consent, and... Moderate Unreviewed

CVE-2025-8672 was published Aug 11, 2025

Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which... High Unreviewed

CVE-2022-32743 was published Sep 2, 2022

An improper permission vulnerability was reported in Lenovo PC Manager that could allow a local... High Unreviewed

CVE-2025-8098 was published Aug 18, 2025

Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install... High Unreviewed

CVE-2022-29376 was published May 24, 2022

A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror... High Unreviewed

CVE-2025-3528 was published May 9, 2025

Incorrect default permissions for some AI Playground software before version v2.3.0 alpha may... Moderate Unreviewed

CVE-2025-27559 was published Aug 12, 2025

Incorrect default permissions for some Intel(R) oneAPI DPC++/C++ Compiler software installers may... Moderate Unreviewed

CVE-2025-20087 was published Aug 12, 2025

Incorrect default permissions for some Intel(R) Distribution for Python software installers... Moderate Unreviewed

CVE-2025-26470 was published Aug 12, 2025

Incorrect default permissions for some Intel(R) Graphics Driver software installers may allow an... Moderate Unreviewed

CVE-2025-20023 was published Aug 12, 2025

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager ... Moderate Unreviewed

CVE-2024-39347 was published Aug 7, 2025

4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions. Moderate Unreviewed

CVE-2024-55398 was published Aug 6, 2025

CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-49084 was published Jul 31, 2025

CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-54085 was published Jul 31, 2025

CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed

CVE-2025-49082 was published Jul 31, 2025

Insecure permissions in the script /etc/init.d/lighttpd in AK-Nord USB-Server-LXL Firmware v0.0... High Unreviewed

CVE-2025-52361 was published Aug 1, 2025

Certain Draytek products are affected by Insecure Permissions. This affects AP903 v1.4.18 and... High Unreviewed

CVE-2025-44643 was published Aug 4, 2025

CODESYS Runtime Toolkit-based products may expose sensitive files to local low-privileged... Moderate Unreviewed

CVE-2025-41658 was published Aug 4, 2025

In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory... High Unreviewed

CVE-2025-54530 was published Jul 28, 2025

Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update... High Unreviewed

CVE-2025-45467 was published Jul 25, 2025

During the AWS Client VPN client installation on Windows devices, the install process references... High Unreviewed

CVE-2025-8069 was published Jul 23, 2025

The `username:password` part was not correctly stripped from URLs in CSP reports potentially... Critical Unreviewed

CVE-2025-8031 was published Jul 22, 2025

Previous1…48 Next

Previous 1 2 3 4 5 … 47 48 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,195 advisories