GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,826
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,061

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

838 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an... High Unreviewed

CVE-2025-26436 was published Sep 5, 2025

In startSpaActivityForApp of SpaActivity.kt, there is a possible cross-user permission bypass due... High Unreviewed

CVE-2025-32333 was published Sep 4, 2025

In onCreate of SelectAccountActivity.java, there is a possible way to add contacts without... High Unreviewed

CVE-2025-48523 was published Sep 4, 2025

NVIDIA BlueField contains a vulnerability in the management interface, where an attacker with... High Unreviewed

CVE-2025-23256 was published Sep 5, 2025

Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user... High Unreviewed

CVE-2024-7697 was published Aug 12, 2024

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to... High Unreviewed

CVE-2025-55177 was published Aug 29, 2025

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath... High Unreviewed

CVE-2018-14665 was published May 13, 2022

An authentication issue was addressed with improved state management. This issue is fixed in... High Unreviewed

CVE-2025-24206 was published Apr 29, 2025

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an elevation of privilege... High Unreviewed

CVE-2017-3891 was published May 13, 2022

IBM Storage Virtualize 8.4, 8.5, 8.6, and 8.7 could allow an authenticated user to escalate their... High Unreviewed

CVE-2025-36120 was published Aug 18, 2025

A security issue exists within the 5032 16pt Digital Configurable module’s web server. The web... High Unreviewed

CVE-2025-7773 was published Aug 14, 2025

Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and... High Unreviewed

CVE-2025-49556 was published Aug 12, 2025

A vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >=... High Unreviewed

CVE-2024-41979 was published Aug 12, 2025

Due to broken authorization, SAP Business One (SLD) allows an authenticated attacker to gain... High Unreviewed

CVE-2025-42951 was published Aug 12, 2025

In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without... High Unreviewed

CVE-2025-20701 was published Aug 4, 2025

A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux... High Unreviewed

CVE-2025-6018 was published Jul 23, 2025

Vulnerability in the Oracle Lease and Finance Management product of Oracle E-Business Suite ... High Unreviewed

CVE-2025-30743 was published Jul 15, 2025

Vulnerability in the Oracle Database component of Oracle Database Server. Supported versions... High Unreviewed

CVE-2025-30751 was published Jul 15, 2025

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2025-30744 was published Jul 15, 2025

ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected by an Incorrect... High Unreviewed

CVE-2025-49536 was published Jul 8, 2025

This vulnerability allows network-adjacent attackers to create arbitrary files on affected... High Unreviewed

CVE-2024-23929 was published Jan 31, 2025

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded... High Unreviewed

CVE-2024-23928 was published Jan 31, 2025

StreamLabs Desktop Application 1.9.0 is vulnerable to Incorrect Access Control via obs64.exe. An... High Unreviewed

CVE-2022-36263 was published Aug 20, 2022

Autel MaxiCharger AC Wallbox Commercial Technician API Incorrect Authorization Privilege... High Unreviewed

CVE-2025-5822 was published Jun 26, 2025

Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to... High Unreviewed

CVE-2025-48466 was published Jun 26, 2025

Previous1…34 Next

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

838 advisories