Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

312 advisories

Loading
In 2N Access Commander versions 3.1.1.2 and prior, an Insufficient Verification of Data... Moderate Unreviewed
CVE-2024-47254 was published Nov 5, 2024
In 2N Access Commander versions 3.1.1.2 and prior, a local attacker can escalate their privileges... Moderate Unreviewed
CVE-2024-47255 was published Nov 5, 2024
In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to... Moderate Unreviewed
CVE-2025-0092 was published Aug 27, 2025
A vulnerability was determined in Belkin AX1800 1.1.00.016. Affected by this vulnerability is an... High Unreviewed
CVE-2025-9379 was published Aug 24, 2025
A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the... Moderate Unreviewed
CVE-2025-8980 was published Aug 14, 2025
A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2025-8979 was published Aug 14, 2025
A vulnerability was determined in D-Link DIR-619L 6.02CN02. Affected is the function... Moderate Unreviewed
CVE-2025-8978 was published Aug 14, 2025
Arbiter 1094B GPS Substation Clock allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2014-9194 was published May 17, 2022
In HDP Server versions below 4.6.2.2978 on Linux, unauthorized access could occur via IP spoofing... High Unreviewed
CVE-2025-6504 was published Jul 29, 2025
Thunderbird ignored paths when checking the validity of navigations in a frame. This... Critical Unreviewed
CVE-2025-8038 was published Jul 22, 2025
An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of... High Unreviewed
CVE-2025-30192 was published Jul 21, 2025
A vulnerability classified as problematic was found in Eluktronics Control Center 5.23.51.41.... Moderate Unreviewed
CVE-2025-7884 was published Jul 20, 2025
A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162.... High Unreviewed
CVE-2025-7096 was published Jul 7, 2025
The executable file warning did not warn users before opening files with the `terminal` extension... High Unreviewed
CVE-2025-6426 was published Jun 26, 2025
Pioneer DMH-WT7600NEX Software Update Signing Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5832 was published Jun 26, 2025
Pioneer DMH-WT7600NEX Root Filesystem Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5833 was published Jun 26, 2025
The backup ZIPs are not signed by the application, leading to the possibility that an attacker... High Unreviewed
CVE-2025-49199 was published Jun 12, 2025
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful... High Unreviewed
CVE-2023-52109 was published Jan 16, 2024
IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks... Critical Unreviewed
CVE-2025-27558 was published May 21, 2025
A vulnerability was discovered in all versions of Medtronic MyCareLink 24950 and 24952 Patient... Moderate Unreviewed
CVE-2018-10626 was published May 13, 2022
Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized... High Unreviewed
CVE-2025-29842 was published May 13, 2025
Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server... Critical Unreviewed
CVE-2022-31813 was published Jun 10, 2022
Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote... High Unreviewed
CVE-2023-5482 was published Nov 1, 2023
An issue in the component MSI.TerminalServer.exe of MSI Center v1.0.41.0 allows attackers to... High Unreviewed
CVE-2022-31877 was published Nov 28, 2022
A logic issue was addressed with improved state management. This issue is fixed in Safari 16.2,... Moderate Unreviewed
CVE-2022-46692 was published Dec 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database