Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

941 advisories

Loading
There is an an information disclosure vulnerability in ZTE T5400. Due to improper configuration... Low Unreviewed
CVE-2025-26710 was published Sep 16, 2025
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that... Low Unreviewed
CVE-2025-8448 was published Aug 20, 2025
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions). The... Low Unreviewed
CVE-2025-40803 was published Sep 9, 2025
Meitrack T366G-L GPS Tracker devices contain an SPI flash chip (Winbond 25Q64JVSIQ) that is... Low Unreviewed
CVE-2025-51643 was published Aug 28, 2025
A security flaw has been discovered in FNKvision Y215 CCTV Camera 10.194.120.40. This affects an... Low Unreviewed
CVE-2025-9381 was published Aug 24, 2025
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Low Unreviewed
CVE-2025-27707 was published Aug 12, 2025
Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive... Low Unreviewed
CVE-2025-38746 was published Aug 6, 2025
A vulnerability was found in Intelbras InControl 2.21.60.9 and classified as problematic. This... Low Unreviewed
CVE-2025-8515 was published Aug 4, 2025
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get... Low Unreviewed
CVE-2025-23290 was published Aug 3, 2025
HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user... Low Unreviewed
CVE-2024-42209 was published Jul 17, 2025
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, and Splunk Cloud Platform... Low Unreviewed
CVE-2025-20325 was published Jul 7, 2025
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The... Low Unreviewed
CVE-2024-20920 was published Jan 17, 2024
HCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints... Low Unreviewed
CVE-2023-50346 was published Jan 3, 2024
A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is... Low Unreviewed
CVE-2025-6199 was published Jun 17, 2025
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core)... Low Unreviewed
CVE-2024-20914 was published Jan 17, 2024
Vulnerability in the Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle... Low Unreviewed
CVE-2024-20955 was published Jan 17, 2024
Vulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported... Low Unreviewed
CVE-2024-20910 was published Jan 17, 2024
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Low Unreviewed
CVE-2025-20030 was published May 13, 2025
The issue was addressed with additional restrictions on the observability of app states. This... Low Unreviewed
CVE-2022-32913 was published Nov 2, 2022
This issue was addressed with improved entitlements. This issue is fixed in iOS 16, watchOS 9. An... Low Unreviewed
CVE-2022-32835 was published Nov 2, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS... Low Unreviewed
CVE-2022-32870 was published Nov 2, 2022
"IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is... Low Unreviewed
CVE-2022-42442 was published Nov 4, 2022
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons... Low Unreviewed
CVE-2017-17864 was published May 14, 2022
Nextcloud Server before 10.0.4 and 11.0.2 are vulnerable to disclosure of calendar and... Low Unreviewed
CVE-2017-0895 was published May 13, 2022
Splunk Enterprise 5.0.x before 5.0.18, 6.0.x before 6.0.14, 6.1.x before 6.1.13, 6.2.x before 6.2... Low Unreviewed
CVE-2017-5607 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database