Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,885
Erlang
37
GitHub Actions
38
Go
2,546
Maven
5,000+
npm
4,212
NuGet
744
pip
3,988
Pub
12
RubyGems
950
Rust
1,038
Swift
45
Unreviewed advisories
All unreviewed
5,000+

38 advisories

Loading
llama-index-core insecurely handles temporary files High
CVE-2025-7647 was published for llama-index-core (pip) Sep 27, 2025
Podman Creates Temporary File with Insecure Permissions High
CVE-2025-4953 was published for github.com/containers/podman/v5 (Go) Sep 16, 2025
Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0... Moderate Unreviewed
CVE-2025-55629 was published Aug 22, 2025
Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File... High Unreviewed
CVE-2025-38747 was published Aug 6, 2025
NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation by authenticated users. Moderate Unreviewed
CVE-2025-32979 was published Apr 25, 2025
Insecure Temporary File in RESTEasy Moderate
CVE-2023-0482 was published for org.jboss.resteasy:resteasy-core (Maven) Jan 15, 2025
Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure... Moderate Unreviewed
CVE-2024-52543 was published Dec 25, 2024
Apache Hadoop: Temporary File Local Information Disclosure Low
CVE-2024-23454 was published for org.apache.hadoop:hadoop-common (Maven) Sep 25, 2024
oscerd
Credited to oscerd
A vulnerability was found in Point B Ltd Getscreen Agent 2.19.6 on Windows. It has been declared... High Unreviewed
CVE-2024-7358 was published Aug 1, 2024
The MSI installer for Splashtop Streamer for Windows before 3.5.8.0 uses a temporary folder with... High Unreviewed
CVE-2024-42052 was published Jul 28, 2024
Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.4 and earlier allows... High Unreviewed
CVE-2024-34329 was published Jul 22, 2024
Insecure Permissions vulnerability in lin-CMS v.0.2.0 and before allows a remote attacker to... High Unreviewed
CVE-2024-41601 was published Jul 19, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Critical Unreviewed
CVE-2024-39872 was published Jul 9, 2024
JumpCloud Agent before 1.178.0 Creates a Temporary File in a Directory with Insecure Permissions.... Moderate Unreviewed
CVE-2023-26603 was published Apr 26, 2024
A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the... Moderate Unreviewed
CVE-2023-6917 was published Feb 28, 2024
Zoom for MacOSclients prior to 5.14.0 contain an improper access control vulnerability. A... Moderate Unreviewed
CVE-2023-28600 was published Jun 13, 2023
A vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). The `i2c` mutex... Low Unreviewed
CVE-2023-27408 was published May 9, 2023
RestEasy Reactive implementation of Quarkus allows Creation of Temporary File With Insecure Permissions Low
CVE-2023-0481 was published for io.quarkus.resteasy.reactive:resteasy-reactive-common (Maven) Feb 24, 2023
joshbressers
Credited to joshbressers
Duplicate Advisory: Insecure Temporary File in RESTEasy Moderate
GHSA-jrmh-v64j-mjm9 was published for org.jboss.resteasy:resteasy-core (Maven) Feb 18, 2023 withdrawn
dovezp
Credited to dovezp
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1426 was published May 24, 2022
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1427 was published May 24, 2022
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1428 was published May 24, 2022
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1430 was published May 24, 2022
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1429 was published May 24, 2022
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect... High Unreviewed
CVE-2021-1496 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database