Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

322 advisories

Loading
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny... High Unreviewed
CVE-2025-32725 was published Jun 10, 2025
The application fails to implement several security headers. These headers help increase the... Moderate Unreviewed
CVE-2025-49193 was published Jun 12, 2025
Sandbox bypass vulnerability in Script Security Plugin High
CVE-2020-2135 was published for org.jenkins-ci.plugins:script-security (Maven) May 24, 2022
NotMyFault nhakmiller
A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially... Low Unreviewed
CVE-2023-20573 was published Jan 11, 2024
ScaleFusion 10.5.2 does not properly limit users to the Edge application because Ctrl-O and Ctrl... High Unreviewed
CVE-2023-51748 was published Jan 11, 2024
A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.10.0), RUGGEDCOM... High Unreviewed
CVE-2025-41224 was published Jul 8, 2025
An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in... High Unreviewed
CVE-2025-21384 was published Apr 1, 2025
Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-47984 was published Jul 8, 2025
Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an... High Unreviewed
CVE-2025-47159 was published Jul 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-48003 was published Jul 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-48800 was published Jul 8, 2025
Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a... High Unreviewed
CVE-2025-49740 was published Jul 8, 2025
Contrast vulnerability allows arbitrary host data Injection into container VOLUME mount points Low
GHSA-phhq-63jg-fp7r was published for github.com/edgelesssys/contrast (Go) Jul 9, 2025
burgerdev katexochen
thomasten
Emerson ValveLink products do not use or incorrectly uses a protection mechanism that provides ... High Unreviewed
CVE-2025-46358 was published Jul 11, 2025
A Protection Mechanism Failure vulnerability in kernel filter processing of Juniper Networks... Moderate Unreviewed
CVE-2025-52951 was published Jul 11, 2025
An attacker was able to bypass the `connect-src` directive of a Content Security Policy by... Critical Unreviewed
CVE-2025-6427 was published Jun 26, 2025
In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX... High Unreviewed
CVE-2017-3893 was published May 17, 2022
XSLT document loading did not correctly propagate the source document which bypassed its CSP.... High Unreviewed
CVE-2025-8032 was published Jul 22, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6,... Critical Unreviewed
CVE-2025-43261 was published Jul 30, 2025
Kenwood DMX958XR Protection Mechanism Failure Software Downgrade Vulnerability. This... Moderate Unreviewed
CVE-2025-8656 was published Aug 6, 2025
Protection mechanism failure for some Edge Orchestrator software before version 24.11.1 for Intel... Moderate Unreviewed
CVE-2025-24523 was published Aug 12, 2025
Protection mechanism failure in the Intel(R) Graphics Driver for the Intel(R) Arc(TM) B-Series... Moderate Unreviewed
CVE-2025-24835 was published Aug 12, 2025
Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the... Critical Unreviewed
CVE-2025-54143 was published Aug 19, 2025
Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure... Critical Unreviewed
CVE-2025-43728 was published Aug 27, 2025
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard... Moderate Unreviewed
CVE-2025-20347 was published Aug 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database