Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,080
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

454 advisories

Loading
Improper link resolution before file access ('link following') in Host Process for Windows Tasks... High Unreviewed
CVE-2025-60710 was published Nov 11, 2025
A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an... High Unreviewed
CVE-2025-11578 was published Nov 11, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in watchOS 10.1,... High Unreviewed
CVE-2023-42942 was published Feb 21, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma... High Unreviewed
CVE-2024-23285 was published Mar 8, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... High Unreviewed
CVE-2024-44132 was published Sep 17, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... High Unreviewed
CVE-2024-44211 was published Dec 20, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and... High Unreviewed
CVE-2024-44258 was published Oct 28, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... High Unreviewed
CVE-2023-31003 was published Jan 11, 2024
RenderDoc through 1.26 allows local privilege escalation via a symlink attack. High Unreviewed
CVE-2023-33865 was published Jun 7, 2023
In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check... High Unreviewed
CVE-2024-46744 was published Sep 18, 2024
Razer Synapse 3 Macro Module Link Following Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-9869 was published Oct 29, 2025
Razer Synapse 3 Chroma Connect Link Following Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-9871 was published Oct 29, 2025
Razer Synapse 3 RazerPhilipsHueUninstall Link Following Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2025-9870 was published Oct 29, 2025
A vulnerability was detected in ermig1979 AntiDupl up to 2.3.12. Impacted is an unknown function... High Unreviewed
CVE-2025-12341 was published Oct 28, 2025
The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to... High Unreviewed
CVE-2015-1130 was published May 17, 2022
Windows Storage Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21391 was published Feb 11, 2025
Windows Error Reporting Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36874 was published Jul 11, 2023
Windows User Profile Service Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21919 was published Jan 12, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-41379 was published May 24, 2022
An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process... High Unreviewed
CVE-2020-0683 was published May 24, 2022
VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1)... High Unreviewed
CVE-2020-3950 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly... High Unreviewed
CVE-2019-1253 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer... High Unreviewed
CVE-2020-0787 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions... High Unreviewed
CVE-2019-1385 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1315 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database