Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. NOTE:... High Unreviewed
CVE-2015-7724 was published May 14, 2022
Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly... High Unreviewed
CVE-2017-8108 was published May 13, 2022
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write... Moderate Unreviewed
CVE-2015-5700 was published May 14, 2022
A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow an... Moderate Unreviewed
CVE-2017-12258 was published May 13, 2022
foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian... Moderate Unreviewed
CVE-2011-2684 was published May 17, 2022
PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, 9.3.x... High Unreviewed
CVE-2017-12172 was published May 13, 2022
It was found that versions of rpm before 4.13.0.2 use temporary files with predictable names when... High Unreviewed
CVE-2017-7501 was published May 13, 2022
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to... High Unreviewed
CVE-2017-15357 was published May 13, 2022
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code... Critical Unreviewed
CVE-2021-3942 was published Dec 12, 2022
Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593... High Unreviewed
CVE-2024-13959 was published May 9, 2025
Local Privilege Escalation in Avira.Spotlight.Service.exe in Avira Prime 1.1.96.2 on Windows 10... High Unreviewed
CVE-2024-13759 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version... High Unreviewed
CVE-2024-13960 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast... High Unreviewed
CVE-2024-13962 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira... High Unreviewed
CVE-2024-9524 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium... High Unreviewed
CVE-2024-13961 was published May 9, 2025
A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0... High Unreviewed
CVE-2025-3224 was published Apr 28, 2025
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows... High Unreviewed
CVE-2024-8404 was published Sep 26, 2024
Improper link resolution before file access ('link following') in Windows Installer allows an... Moderate Unreviewed
CVE-2025-29837 was published May 13, 2025
Improper link resolution before file access ('link following') in Microsoft PC Manager allows an... High Unreviewed
CVE-2025-29975 was published May 13, 2025
Improper link resolution before file access ('Link Following') for some Intel(R) Graphics Driver... High Unreviewed
CVE-2025-20003 was published May 13, 2025
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non... Moderate Unreviewed
CVE-2025-22247 was published May 12, 2025
Improper link resolution before file access in the Nomad module of the 1E Client, in versions... High Unreviewed
CVE-2025-1683 was published Mar 12, 2025
Improper Link Resolution Before File Access ('Link Following') vulnerability in QFileSystemEngine... High Unreviewed
CVE-2025-4211 was published May 16, 2025
1E Client installer can perform arbitrary file deletion on protected files.   A non-privileged... High Unreviewed
CVE-2023-45159 was published Oct 5, 2023
An elevation of privilege vulnerability exists when the Windows Shell fails to validate folder... High Unreviewed
CVE-2019-1053 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database