Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

987 advisories

Loading
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-53025 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-53030 was published Jul 15, 2025
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle... Moderate Unreviewed
CVE-2025-50061 was published Jul 15, 2025
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... Moderate Unreviewed
CVE-2025-50064 was published Jul 15, 2025
Installation file of ESET security products on Windows allow an attacker to misuse to delete an... Moderate Unreviewed
CVE-2025-5028 was published Jul 11, 2025
A potential security vulnerability has been identified in the HP Support Assistant, which allows... Moderate Unreviewed
CVE-2025-43019 was published Jul 8, 2025
An issue in NetEase (Hangzhou) Network Co., Ltd NeacSafe64 Driver before v1.0.0.8 allows... Moderate Unreviewed
CVE-2025-45737 was published Jun 27, 2025
New authd users logging in via SSH are members of the root group Moderate
CVE-2025-5689 was published for github.com/ubuntu/authd (Go) Jun 16, 2025
An Improper Privilege Management vulnerability [CWE-269] affecting Fortinet FortiOS version 7.6.0... Moderate Unreviewed
CVE-2025-22254 was published Jun 10, 2025
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.1),... Moderate Unreviewed
CVE-2024-41797 was published Jun 10, 2025
When a notification relating to low battery appears for a user with whom the device has been... Moderate Unreviewed
CVE-2025-4975 was published May 23, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Moderate Unreviewed
CVE-2025-24183 was published May 19, 2025
Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation. ACL are... Moderate Unreviewed
CVE-2025-4649 was published May 13, 2025
An authenticated user without user-management permissions could view other users' account... Moderate Unreviewed
CVE-2025-46745 was published May 12, 2025
A suspended or recently logged-out user could continue to interact with Blueframe until the time... Moderate Unreviewed
CVE-2025-46741 was published May 12, 2025
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-3438 was published May 2, 2025
There is a Permission Management and Access Control vulnerability in the GoldenDB database... Moderate Unreviewed
CVE-2025-46576 was published Apr 27, 2025
An improper privilege management vulnerability in the recovery function of the USG FLEX H series... Moderate Unreviewed
CVE-2025-1732 was published Apr 22, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and... Moderate Unreviewed
CVE-2023-38614 was published Apr 11, 2025
A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). The... Moderate Unreviewed
CVE-2025-29999 was published Apr 8, 2025
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter Moderate Unreviewed
CVE-2025-28401 was published Apr 7, 2025
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the postID... Moderate Unreviewed
CVE-2025-28400 was published Apr 7, 2025
Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to... Moderate Unreviewed
CVE-2025-2713 was published Mar 28, 2025
accountsservice no longer drops permissions when writting .pam_environment Moderate Unreviewed
CVE-2022-1804 was published Mar 25, 2025
In version v0.0.14 of transformeroptimus/superagi, there is an improper privilege management... Moderate Unreviewed
CVE-2024-9431 was published Mar 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database