GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,936
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,154
NuGet 736
pip 3,953
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,169

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

327 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW... Moderate Unreviewed

CVE-2025-7937 was published Sep 19, 2025

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM... Moderate Unreviewed

CVE-2025-6198 was published Sep 19, 2025

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed

CVE-2025-20248 was published Sep 10, 2025

An improper verification of cryptographic signature vulnerability was identified in GitHub... Moderate Unreviewed

CVE-2025-23369 was published Jan 21, 2025

An insufficiently secured internal function allows session generation for arbitrary users. The... High Unreviewed

CVE-2025-30064 was published Aug 27, 2025

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized... Moderate Unreviewed

CVE-2025-55229 was published Aug 21, 2025

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that... High Unreviewed

CVE-2025-4371 was published Aug 18, 2025

A vulnerability has been identified in Mendix SAML (Mendix 10.12 compatible) (All versions < V4.0... High Unreviewed

CVE-2025-40758 was published Aug 14, 2025

An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on... Critical Unreviewed

CVE-2025-54982 was published Aug 5, 2025

It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software,... Critical Unreviewed

CVE-2025-8454 was published Aug 1, 2025

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in... Moderate Unreviewed

CVE-2025-43185 was published Jul 30, 2025

A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Moderate Unreviewed

CVE-2025-43023 was published Jul 28, 2025

A vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected... Moderate Unreviewed

CVE-2025-23364 was published Jul 8, 2025

Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with... Moderate Unreviewed

CVE-2024-36347 was published Jun 28, 2025

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2... Critical Unreviewed

CVE-2025-32977 was published Jun 26, 2025

The cryptographic code signing process and controls on ConnectWise Control through 22.9.10032 ... Critical Unreviewed

CVE-2023-25718 was published Feb 13, 2023

Improper verification of cryptographic signature in App Control for Business (WDAC) allows an... Moderate Unreviewed

CVE-2025-33069 was published Jun 10, 2025

In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly... High Unreviewed

CVE-2025-47827 was published Jun 5, 2025

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x... Moderate Unreviewed

CVE-2022-42010 was published Oct 10, 2022

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker... High Unreviewed

CVE-2022-38177 was published Sep 22, 2022

By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker... High Unreviewed

CVE-2022-38178 was published Sep 22, 2022

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions), SiPass... High Unreviewed

CVE-2022-31807 was published May 23, 2025

Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF... Low Unreviewed

CVE-2025-2866 was published Apr 27, 2025

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series... Moderate Unreviewed

CVE-2025-20181 was published May 7, 2025

Insufficient verification of multiple header signatures while loading a Trusted Application (TA)... High Unreviewed

CVE-2021-26391 was published Nov 10, 2022

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

327 advisories