Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

312 advisories

Loading
In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to... Moderate Unreviewed
CVE-2025-0092 was published Aug 27, 2025
A vulnerability was determined in Belkin AX1800 1.1.00.016. Affected by this vulnerability is an... High Unreviewed
CVE-2025-9379 was published Aug 24, 2025
A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the... Moderate Unreviewed
CVE-2025-8980 was published Aug 14, 2025
A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2025-8979 was published Aug 14, 2025
A vulnerability was determined in D-Link DIR-619L 6.02CN02. Affected is the function... Moderate Unreviewed
CVE-2025-8978 was published Aug 14, 2025
In HDP Server versions below 4.6.2.2978 on Linux, unauthorized access could occur via IP spoofing... High Unreviewed
CVE-2025-6504 was published Jul 29, 2025
Thunderbird ignored paths when checking the validity of navigations in a frame. This... Critical Unreviewed
CVE-2025-8038 was published Jul 22, 2025
An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of... High Unreviewed
CVE-2025-30192 was published Jul 21, 2025
A vulnerability classified as problematic was found in Eluktronics Control Center 5.23.51.41.... Moderate Unreviewed
CVE-2025-7884 was published Jul 20, 2025
A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162.... High Unreviewed
CVE-2025-7096 was published Jul 7, 2025
Pioneer DMH-WT7600NEX Root Filesystem Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5833 was published Jun 26, 2025
Pioneer DMH-WT7600NEX Software Update Signing Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5832 was published Jun 26, 2025
The executable file warning did not warn users before opening files with the `terminal` extension... High Unreviewed
CVE-2025-6426 was published Jun 26, 2025
The backup ZIPs are not signed by the application, leading to the possibility that an attacker... High Unreviewed
CVE-2025-49199 was published Jun 12, 2025
IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks... Critical Unreviewed
CVE-2025-27558 was published May 21, 2025
Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized... High Unreviewed
CVE-2025-29842 was published May 13, 2025
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS)... Moderate Unreviewed
CVE-2025-27735 was published Apr 8, 2025
A vulnerability has been found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308 and classified... Moderate Unreviewed
CVE-2025-2346 was published Mar 16, 2025
Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an... Moderate Unreviewed
CVE-2025-0149 was published Mar 11, 2025
Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices... Moderate Unreviewed
CVE-2025-27257 was published Mar 10, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.750 Application 20.0.1442... Critical Unreviewed
CVE-2025-27680 was published Mar 5, 2025
Insufficient verification of data authenticity in some Intel(R) DSA software before version 23.4... High Unreviewed
CVE-2024-39805 was published Feb 13, 2025
Insufficient data authenticity verification vulnerability in Janto, versions prior to r12. This... High Unreviewed
CVE-2025-1108 was published Feb 7, 2025
An insufficient verification of data authenticity vulnerability exists in BIG-IP APM Access... Low Unreviewed
CVE-2025-23415 was published Feb 5, 2025
Thunderbird displayed an incorrect sender address if the From field of an email used the invalid... Moderate Unreviewed
CVE-2025-0510 was published Feb 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database