GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
1,201 advisories
Filter by severity
Arbitrary File Overwrite in fstream
High
CVE-2019-13173
was published
for
fstream
(npm)
May 30, 2019
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac...
Moderate
Unreviewed
CVE-2020-3432
was published
Feb 12, 2025
Windows Disk Cleanup Tool Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21420
was published
Feb 11, 2025
Microsoft PC Manager Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21322
was published
Feb 11, 2025
Windows Deployment Services Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2025-21347
was published
Feb 11, 2025
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21373
was published
Feb 11, 2025
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2025-21188
was published
Feb 11, 2025
Windows Setup Files Cleanup Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21419
was published
Feb 11, 2025
Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability...
High
Unreviewed
CVE-2025-0413
was published
Feb 5, 2025
Dell Client Platform Firmware Update Utility contains an Improper Link Resolution vulnerability....
Moderate
Unreviewed
CVE-2024-52537
was published
Dec 11, 2024
Dell AppSync, version 4.6.0.x, contain a Symbolic Link (Symlink) Following vulnerability. A low...
Moderate
Unreviewed
CVE-2024-52542
was published
Dec 17, 2024
Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution...
High
Unreviewed
CVE-2024-47480
was published
Dec 18, 2024
SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files...
High
Unreviewed
CVE-2024-57728
was published
Jan 16, 2025
Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the...
Moderate
Unreviewed
CVE-2022-38730
was published
Apr 27, 2023
Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an...
Low
Unreviewed
CVE-2025-0146
was published
Jan 30, 2025
Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs...
High
Unreviewed
CVE-2024-52535
was published
Dec 25, 2024
An arbitrary file deletion vulnerability exists in PaperCut NG/MF that only affects Windows...
Moderate
Unreviewed
CVE-2024-3037
was published
May 14, 2024
HashiCorp go-slug Vulnerable to Zip Slip Attack
High
CVE-2025-0377
was published
for
github.com/hashicorp/go-slug
(Go)
Jan 21, 2025
** DISPUTED ** init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via...
Moderate
Unreviewed
CVE-2008-4996
was published
May 17, 2022
Windows Event Tracing Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2025-21274
was published
Jan 14, 2025
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21331
was published
Jan 14, 2025
Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x contains an UNIX symbolic link (symlink)...
Moderate
Unreviewed
CVE-2024-25953
was published
Mar 28, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.x contains an UNIX symbolic link (symlink)...
Moderate
Unreviewed
CVE-2024-25952
was published
Mar 28, 2024
Microsoft Office Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49059
was published
Dec 12, 2024
A LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local...
High
Unreviewed
CVE-2024-52050
was published
Dec 31, 2024
ProTip!
Advisories are also available from the
GraphQL API