Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,266 advisories

Loading
WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access... High Unreviewed
CVE-2023-49961 was published Jan 8, 2024
An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free... High Unreviewed
CVE-2025-49154 was published Jun 17, 2025
Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful... High Unreviewed
CVE-2023-52099 was published Jan 16, 2024
In ScaleFusion (Windows Desktop App) agent v10.5.2, Kiosk mode application restrictions can be... High Unreviewed
CVE-2023-50159 was published Jan 11, 2024
In Min before 1.31.0, local files are not correctly treated as unique security origins, which... High Unreviewed
CVE-2024-25677 was published Feb 9, 2024
Incorrect access control in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows... High Unreviewed
CVE-2023-51065 was published Jan 13, 2024
Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control... High Unreviewed
CVE-2025-27689 was published Jun 12, 2025
This High severity PrivEsc (Privilege Escalation) vulnerability was introduced in versions: 9.12... High Unreviewed
CVE-2025-22157 was published May 20, 2025
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of... High Unreviewed
CVE-2023-21901 was published Jan 17, 2024
Erxes Incorrect Access Control vulnerability High
CVE-2024-57190 was published for erxes (npm) Jun 10, 2025
Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-47962 was published Jun 10, 2025
Improper access control in Windows Installer allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-32714 was published Jun 10, 2025
Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an... High Unreviewed
CVE-2025-33056 was published Jun 10, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... High Unreviewed
CVE-2025-43586 was published Jun 10, 2025
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The Gboard used by different... High Unreviewed
CVE-2022-36441 was published Jan 10, 2023
An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The device allows the... High Unreviewed
CVE-2022-36443 was published Jan 10, 2023
Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier... High Unreviewed
CVE-2025-4433 was published May 30, 2025
Apache Commons Improper Access Control vulnerability High
CVE-2025-48734 was published for commons-beanutils:commons-beanutils (Maven) May 28, 2025
Rancher does not Properly Validate Account Bindings in SAML Authentication Enables User Impersonation on First Login High
CVE-2025-23389 was published for github.com/rancher/rancher (Go) Feb 27, 2025
AnonySE26
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable... High Unreviewed
CVE-2025-24916 was published May 23, 2025
In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non... High Unreviewed
CVE-2025-24917 was published May 23, 2025
In Medtronic MinMed 508 and Medtronic Minimed Paradigm Insulin Pumps, Versions, MiniMed 508 pump ... High Unreviewed
CVE-2019-10964 was published May 24, 2022
An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration... High Unreviewed
CVE-2022-42717 was published Oct 12, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-30712 was published Apr 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database