Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non... Moderate Unreviewed
CVE-2025-22247 was published May 12, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast... High Unreviewed
CVE-2024-13962 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version... High Unreviewed
CVE-2024-13960 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira... High Unreviewed
CVE-2024-9524 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium... High Unreviewed
CVE-2024-13961 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593... High Unreviewed
CVE-2024-13959 was published May 9, 2025
Local Privilege Escalation in Avira.Spotlight.Service.exe in Avira Prime 1.1.96.2 on Windows 10... High Unreviewed
CVE-2024-13759 was published May 9, 2025
A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0... High Unreviewed
CVE-2025-3224 was published Apr 28, 2025
A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for... Moderate Unreviewed
CVE-2025-1697 was published Apr 18, 2025
A Improper Link Resolution vulnerability (CWE-59) in the SonicWall Connect Tunnel Windows (32 and... High Unreviewed
CVE-2025-32817 was published Apr 16, 2025
Dell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File... Moderate Unreviewed
CVE-2025-29983 was published Apr 15, 2025
An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall... Moderate Unreviewed
CVE-2025-23010 was published Apr 10, 2025
Improper link resolution before file access ('link following') in Windows Installer allows an... High Unreviewed
CVE-2025-27727 was published Apr 8, 2025
Improper link resolution before file access ('link following') in Windows Update Stack allows an... High Unreviewed
CVE-2025-21204 was published Apr 8, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-30457 was published Apr 1, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24278 was published Apr 1, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... Critical Unreviewed
CVE-2025-24242 was published Apr 1, 2025
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-29795 was published Mar 23, 2025
Improper link resolution before file access in the Nomad module of the 1E Client, in versions... High Unreviewed
CVE-2025-1683 was published Mar 12, 2025
Improper link resolution before file access ('link following') in Microsoft Windows allows an... High Unreviewed
CVE-2025-25008 was published Mar 11, 2025
Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an... Moderate Unreviewed
CVE-2024-45418 was published Feb 25, 2025
Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack... High Unreviewed
CVE-2025-22480 was published Feb 13, 2025
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac... Moderate Unreviewed
CVE-2020-3432 was published Feb 12, 2025
Windows Setup Files Cleanup Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21419 was published Feb 11, 2025
Windows Disk Cleanup Tool Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21420 was published Feb 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database