Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21331 was published Jan 14, 2025
SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files... High Unreviewed
CVE-2024-57728 was published Jan 16, 2025
HashiCorp go-slug Vulnerable to Zip Slip Attack High
CVE-2025-0377 was published for github.com/hashicorp/go-slug (Go) Jan 21, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4... Moderate Unreviewed
CVE-2025-24104 was published Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24103 was published Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24136 was published Jan 28, 2025
Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an... Low Unreviewed
CVE-2025-0146 was published Jan 30, 2025
Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability... High Unreviewed
CVE-2025-0413 was published Feb 5, 2025
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21188 was published Feb 11, 2025
Microsoft PC Manager Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21322 was published Feb 11, 2025
Windows Deployment Services Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21347 was published Feb 11, 2025
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21373 was published Feb 11, 2025
Windows Setup Files Cleanup Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21419 was published Feb 11, 2025
Windows Disk Cleanup Tool Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21420 was published Feb 11, 2025
Windows Storage Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21391 was published Feb 11, 2025
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac... Moderate Unreviewed
CVE-2020-3432 was published Feb 12, 2025
Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack... High Unreviewed
CVE-2025-22480 was published Feb 13, 2025
Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an... Moderate Unreviewed
CVE-2024-45418 was published Feb 25, 2025
Improper link resolution before file access ('link following') in Microsoft Windows allows an... High Unreviewed
CVE-2025-25008 was published Mar 11, 2025
Improper link resolution before file access in the Nomad module of the 1E Client, in versions... High Unreviewed
CVE-2025-1683 was published Mar 12, 2025
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-29795 was published Mar 23, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... Critical Unreviewed
CVE-2025-24242 was published Apr 1, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24278 was published Apr 1, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-30457 was published Apr 1, 2025
Improper link resolution before file access ('link following') in Windows Update Stack allows an... High Unreviewed
CVE-2025-21204 was published Apr 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database