GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,387

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

887 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An improper certificate validation vulnerability has been reported to affect Qsync Central. If a... High Unreviewed

CVE-2025-30277 was published Aug 29, 2025

An improper certificate validation vulnerability has been reported to affect Qsync Central. If a... High Unreviewed

CVE-2025-30278 was published Aug 29, 2025

Improper Certificate Validation in Checkmk Exchange plugin BGP Monitoring allows attackers in... Moderate Unreviewed

CVE-2025-58123 was published Aug 28, 2025

Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM... Moderate Unreviewed

CVE-2025-58124 was published Aug 28, 2025

Improper Certificate Validation in Checkmk Exchange plugin Freebox v6 agent allows attackers in... Moderate Unreviewed

CVE-2025-58125 was published Aug 28, 2025

Improper Certificate Validation in Checkmk Exchange plugin Dell Powerscale allows attackers in... Moderate Unreviewed

CVE-2025-58127 was published Aug 28, 2025

Improper Certificate Validation in Checkmk Exchange plugin VMware vSAN allows attackers in MitM... Moderate Unreviewed

CVE-2025-58126 was published Aug 28, 2025

A malicious client can bypass the client certificate trust check of an opc.https server when the... Critical Unreviewed

CVE-2025-7390 was published Aug 21, 2025

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS... Moderate Unreviewed

CVE-2025-33142 was published Aug 14, 2025

An insufficient validation on the server connection endpoint in Netskope Client allows local... Moderate Unreviewed

CVE-2025-0309 was published Aug 14, 2025

An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect™ app enables... Moderate Unreviewed

CVE-2025-2183 was published Aug 13, 2025

F5 Access for Android before version 3.1.2 which uses HTTPS does not verify the remote endpoint... High Unreviewed

CVE-2025-54809 was published Aug 13, 2025

A TLS vulnerability exists in the phone application used to manage a connected device. The phone... High Unreviewed

CVE-2025-8393 was published Aug 8, 2025

A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an... Moderate Unreviewed

CVE-2025-20215 was published Aug 6, 2025

The server identity check mechanism for firmware upgrade performed via command shell is... Moderate Unreviewed

CVE-2025-48393 was published Aug 6, 2025

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used... Moderate Unreviewed

CVE-2025-2028 was published Aug 6, 2025

Authentication management vulnerability in the ArkWeb module. Impact: Successful exploitation of... High Unreviewed

CVE-2025-54607 was published Aug 6, 2025

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the... Low Unreviewed

CVE-2025-44964 was published Aug 5, 2025

Alpine iLX-507 TIDAL Improper Certificate Validation Vulnerability. This vulnerability allows... High Unreviewed

CVE-2025-8476 was published Aug 1, 2025

IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0... Moderate Unreviewed

CVE-2025-36005 was published Jul 25, 2025

A certificate verification error in wolfSSL when building with the WOLFSSL_SYS_CA_CERTS and... Critical Unreviewed

CVE-2025-7395 was published Jul 19, 2025

The communication protocol used between client and server had a flaw that could be leveraged to... Moderate Unreviewed

CVE-2025-30024 was published Jul 11, 2025

Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an... High Unreviewed

CVE-2025-46788 was published Jul 10, 2025

A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate... Moderate Unreviewed

CVE-2025-32989 was published Jul 10, 2025

Improper Certificate Validation (CWE-295) in the Controller 7000 OneLink implementation could... Moderate Unreviewed

CVE-2025-35983 was published Jul 10, 2025

Previous1…36 Next

Previous 1 2 3 4 5 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

887 advisories