Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
47
Go
3,323
Maven
5,000+
npm
5,000+
NuGet
880
pip
4,533
Pub
12
RubyGems
1,010
Rust
1,201
Swift
51
Unreviewed advisories
All unreviewed
5,000+

1,437 advisories

Loading
The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation... High Unreviewed
CVE-2026-32680 was published Mar 26, 2026
When a plugin is installed using the Arturia Software Center (MacOS), it also installs an... High Unreviewed
CVE-2026-24063 was published Mar 18, 2026
Capgo CLI: symlink-following local secret writes enable arbitrary file overwrite + world-readable credentials (0600 missing) High
GHSA-8mpm-q7mh-8fvh was published for @capgo/cli (npm) Mar 18, 2026
Judel777 Credited to Judel777
OpenClaw session transcript files were created without forced user-only permissions Moderate
GHSA-vr7j-g7jv-h5mp was published for openclaw (npm) Mar 16, 2026
hsongkai11 Credited to hsongkai11
ZKTeco ZKBioSecurity 3.0 contains a file path manipulation vulnerability that allows attackers to... Moderate Unreviewed
CVE-2016-20029 was published Mar 16, 2026
A container privilege escalation flaw was found in certain Fuse images. This issue stems from the... Moderate Unreviewed
CVE-2025-57849 was published Mar 13, 2026
A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images... Moderate Unreviewed
CVE-2025-8766 was published Mar 13, 2026
.NET Elevation of Privilege Vulnerability High
CVE-2026-26131 was published for Microsoft.NetCore.App.Runtime.linux-arm (NuGet) Mar 11, 2026
igorkovalchuk Credited to igorkovalchuk
Duplicate Advisory: Microsoft Security Advisory CVE-2026-26131 – .NET Elevation of Privilege Vulnerability High
GHSA-387c-qmrw-59qv was published for Microsoft.NetCore.App.Runtime.linux-arm (NuGet) Mar 10, 2026 withdrawn
Multiple i-フィルター products are configured with improper file access permission settings. Files may... Moderate Unreviewed
CVE-2026-28267 was published Mar 10, 2026
Local privilege escalation due to improper directory permissions. The following products are... Moderate Unreviewed
CVE-2026-28717 was published Mar 6, 2026
Local privilege escalation due to insecure Unix socket permissions. The following products are... High Unreviewed
CVE-2026-28727 was published Mar 6, 2026
UPS Multi-UPS Management Console (MUMC) version 01.06.0001 (A03) contains an Incorrect Default... High Unreviewed
CVE-2026-26034 was published Mar 5, 2026
Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1,... Moderate Unreviewed
CVE-2026-21423 was published Mar 4, 2026
HP System Event Utility might allow denial of service with elevated arbitrary file writes. This... Moderate Unreviewed
CVE-2026-2915 was published Mar 3, 2026
AWS CLI: cli_history database does not restrict file permissions on Unix systems Moderate
GHSA-747p-wmpv-9c78 was published for awscli (pip) Feb 27, 2026
The installers for multiple products provided by Soliton Systems K.K. contain an issue with... Moderate Unreviewed
CVE-2026-27653 was published Feb 27, 2026
The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default... High Unreviewed
CVE-2026-23703 was published Feb 26, 2026
Local privilege escalation in Genetec Update Service. An authenticated, low-privileged, Windows... Moderate Unreviewed
CVE-2025-1789 was published Feb 24, 2026
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on... Moderate Unreviewed
CVE-2026-2026 was published Feb 13, 2026
Incorrect default permissions for some Intel(R) Battery Life Diagnostic Tool within Ring 3: User... Moderate Unreviewed
CVE-2025-31655 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Chipset Software before version 10.1.20266.8668... Moderate Unreviewed
CVE-2025-36522 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Graphics Driver software within Ring 2:... Moderate Unreviewed
CVE-2025-32453 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Memory and Storage Tool before version 2.5.2... Moderate Unreviewed
CVE-2025-36511 was published Feb 10, 2026
Incorrect default permissions for the Intel(R) Optane(TM) PMem management software before... Moderate Unreviewed
CVE-2025-22849 was published Feb 10, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database