Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
An integer overflow was addressed with improved input validation. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24195 was published Apr 1, 2025
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13... High Unreviewed
CVE-2025-24234 was published Apr 1, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5,... Critical Unreviewed
CVE-2025-24238 was published Apr 1, 2025
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13... High Unreviewed
CVE-2025-24170 was published Apr 1, 2025
The WatchGuard Mobile VPN with SSL Client on Windows does not properly configure directory... Moderate Unreviewed
CVE-2025-2781 was published Mar 29, 2025
The WatchGuard Terminal Services Agent on Windows does not properly configure directory... Moderate Unreviewed
CVE-2025-2782 was published Mar 29, 2025
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine... Low Unreviewed
CVE-2023-46270 was published Apr 29, 2024
Potential security vulnerabilities have been identified in HP Support Assistant. These... High Unreviewed
CVE-2022-23453 was published Feb 1, 2023
Potential security vulnerabilities have been identified in HP Support Assistant. These... High Unreviewed
CVE-2022-23454 was published Feb 1, 2023
HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate... Critical Unreviewed
CVE-2025-25535 was published Mar 26, 2025
In wlan driver, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2022-47450 was published Feb 12, 2023
Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5 Moderate Unreviewed
CVE-2024-6148 was published Jul 10, 2024
This issue was addressed through improved state management. This issue is fixed in visionOS 1.3,... Moderate Unreviewed
CVE-2024-54564 was published Mar 21, 2025
In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed
CVE-2024-49736 was published Jan 22, 2025
In setActualDefaultRingtoneUri of RingtoneManager.java, there is a possible way to bypass content... High Unreviewed
CVE-2023-40132 was published Jan 22, 2025
In many locations, there is a possible way to access kernel memory in user space due to an... High Unreviewed
CVE-2018-9401 was published Jan 18, 2025
In multiple functions of Parcel.cpp, there is a possible way to bypass address space layout... High Unreviewed
CVE-2018-9434 was published Jan 18, 2025
In multiple functions of AccountManagerService.java, there is a possible way to bypass... High Unreviewed
CVE-2024-49724 was published Jan 22, 2025
PipeCD Vulnerable to Privilege Escalation High
CVE-2024-53351 was published for github.com/pipe-cd/pipecd (Go) Mar 21, 2025
An issue in Nothing Tech Nothing OS v.2.6 allows a local attacker to escalate privileges via the... High Unreviewed
CVE-2024-51440 was published Feb 13, 2025
Libcontainer is affected by capabilities elevation similar to GHSA-f3fp-gc8g-vw66 Moderate
CVE-2025-27612 was published for libcontainer (Rust) Mar 21, 2025
YJDoc2 utam0k
jprendes
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions... High Unreviewed
CVE-2025-24915 was published Mar 21, 2025
AWS Amplify CLI has incorrect trust policy management Critical
CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024
MaysWind ezBookkeeping has Improper Privilege Management Critical
CVE-2024-57604 was published for github.com/mayswind/ezbookkeeping (Go) Feb 13, 2025
Cache confusion in Jenkins Eiffel Broadcaster Plugin Moderate
CVE-2025-24400 was published for com.axis.jenkins.plugins.eiffel:eiffel-broadcaster (Maven) Jan 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database