GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,367

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,216 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers.... Moderate Unreviewed

CVE-2025-10059 was published Sep 5, 2025

NVIDIA DOCA contains a vulnerability in the collectx-dpeserver Debian package for arm64 that... High Unreviewed

CVE-2025-23258 was published Sep 5, 2025

NVIDIA DOCA contains a vulnerability in the collectx-clxapidev Debian package that could allow an... High Unreviewed

CVE-2025-23257 was published Sep 5, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-43268 was published Aug 29, 2025

Local privilege escalation due to insecure folder permissions. The following products are... High Unreviewed

CVE-2025-9578 was published Aug 28, 2025

Incorrect permission assignment for critical resource issue exists in SS1 Ver.16.0.0.10 and... High Unreviewed

CVE-2025-53396 was published Aug 28, 2025

Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for... High Unreviewed

CVE-2025-43729 was published Aug 27, 2025

The configuration file containing database logins and passwords is readable by any local user. Critical Unreviewed

CVE-2025-30063 was published Aug 27, 2025

In handleBondStateChanged of AdapterService.java, there is a possible unapproved data access due... High Unreviewed

CVE-2025-0093 was published Aug 27, 2025

Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior... Critical Unreviewed

CVE-2025-4609 was published Aug 22, 2025

Insecure Permissions vulnerability in PDQ Smart Deploy V.3.0.2040 allows a local attacker to... High Unreviewed

CVE-2025-52094 was published Aug 22, 2025

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission... Moderate Unreviewed

CVE-2025-38742 was published Aug 21, 2025

Insecure permissions in Agent-Zero v0.8.* allow attackers to arbitrarily reset the system via... High Unreviewed

CVE-2025-55524 was published Aug 21, 2025

Multiple Incorrect Permission Assignment for Critical Resource in UISP Application may allow a... High Unreviewed

CVE-2025-27216 was published Aug 21, 2025

IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they... Moderate Unreviewed

CVE-2025-1139 was published Aug 20, 2025

Firefox for Android allowed a sandboxed iframe without the `allow-downloads` attribute to start... Critical Unreviewed

CVE-2025-8042 was published Aug 19, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.7 before 17.11.6, 18... Moderate Unreviewed

CVE-2025-5819 was published Aug 13, 2025

GPMAW 14, a bioinformatics software, has a critical vulnerability related to insecure file... High Unreviewed

CVE-2025-50675 was published Aug 7, 2025

Permission control vulnerability in the distributed clipboard module. Impact: Successful... Moderate Unreviewed

CVE-2025-54618 was published Aug 6, 2025

LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 (setuid and setgid), which allows... Critical Unreviewed

CVE-2025-46093 was published Aug 5, 2025

A low-privileged attacker can remotely access the PKI folder of the CODESYS Control runtime... High Unreviewed

CVE-2025-41659 was published Aug 4, 2025

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where it allows a guest... Moderate Unreviewed

CVE-2025-23285 was published Aug 3, 2025

Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view... Critical Unreviewed

CVE-2025-45150 was published Aug 1, 2025

Array Networks vAPV (version 8.3.2.17) and vxAG (version 9.2.0.34) appliances are affected by a... Critical Unreviewed

CVE-2014-125121 was published Jul 31, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43266 was published Jul 30, 2025

Previous1…49 Next

Previous 1 2 3 4 5 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,216 advisories