Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
Improper link resolution before file access ('link following') in Windows Installer allows an... High Unreviewed
CVE-2025-27727 was published Apr 8, 2025
An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall... Moderate Unreviewed
CVE-2025-23010 was published Apr 10, 2025
Dell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File... Moderate Unreviewed
CVE-2025-29983 was published Apr 15, 2025
A Improper Link Resolution vulnerability (CWE-59) in the SonicWall Connect Tunnel Windows (32 and... High Unreviewed
CVE-2025-32817 was published Apr 16, 2025
A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for... Moderate Unreviewed
CVE-2025-1697 was published Apr 18, 2025
A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0... High Unreviewed
CVE-2025-3224 was published Apr 28, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593... High Unreviewed
CVE-2024-13959 was published May 9, 2025
Local Privilege Escalation in Avira.Spotlight.Service.exe in Avira Prime 1.1.96.2 on Windows 10... High Unreviewed
CVE-2024-13759 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast... High Unreviewed
CVE-2024-13962 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version... High Unreviewed
CVE-2024-13960 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira... High Unreviewed
CVE-2024-9524 was published May 9, 2025
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium... High Unreviewed
CVE-2024-13961 was published May 9, 2025
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non... Moderate Unreviewed
CVE-2025-22247 was published May 12, 2025
Client RCE on macOS and Linux via improper symbolic link resolution in Google Web Designer's... High Unreviewed
CVE-2025-1079 was published May 12, 2025
Improper link resolution before file access ('link following') in Windows Installer allows an... Moderate Unreviewed
CVE-2025-29837 was published May 13, 2025
Improper link resolution before file access ('link following') in Microsoft PC Manager allows an... High Unreviewed
CVE-2025-29975 was published May 13, 2025
Improper link resolution before file access ('Link Following') for some Intel(R) Graphics Driver... High Unreviewed
CVE-2025-20003 was published May 13, 2025
Improper Link Resolution Before File Access ('Link Following') vulnerability in QFileSystemEngine... High Unreviewed
CVE-2025-4211 was published May 16, 2025
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local... Moderate Unreviewed
CVE-2025-3908 was published May 19, 2025
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless... Moderate Unreviewed
CVE-2025-2102 was published May 21, 2025
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-47181 was published May 23, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31198 was published May 30, 2025
Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. Local attackers with... High Unreviewed
CVE-2024-11857 was published Jun 2, 2025
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed
CVE-2024-52561 was published Jun 3, 2025
A privilege escalation vulnerability exists in the virtual machine archive restoration... High Unreviewed
CVE-2024-36486 was published Jun 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database