Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,768
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,390 advisories

Loading
An insufficient verification of data authenticity vulnerability exists in BIG-IP APM Access... Low Unreviewed
CVE-2025-23415 was published Feb 5, 2025
A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS... Low Unreviewed
CVE-2025-20185 was published Feb 5, 2025
ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability... Low Unreviewed
CVE-2024-9097 was published Feb 5, 2025
An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17... Low Unreviewed
CVE-2024-5528 was published Feb 5, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote... Low Unreviewed
CVE-2024-45658 was published Feb 4, 2025
Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows... Low Unreviewed
CVE-2025-20895 was published Feb 4, 2025
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of... Low Unreviewed
CVE-2025-22475 was published Feb 4, 2025
Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may... Low Unreviewed
CVE-2025-0148 was published Feb 4, 2025
A vulnerability, which was classified as critical, has been found in MaxD Lightning Module 4.43... Low Unreviewed
CVE-2025-0974 was published Feb 3, 2025
Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer... Low Unreviewed
CVE-2024-53296 was published Feb 1, 2025
PMD Designer's release key passphrase (GPG) available on Maven Central in cleartext Low
CVE-2025-23215 was published for net.sourceforge.pmd:pmd-core (Maven) Jan 31, 2025
hboutemy
gdbus setgid privilege escalation Low Unreviewed
CVE-2020-11936 was published Jan 31, 2025
SXF Common Library handles input data improperly. If a product using the library reads a crafted... Low Unreviewed
CVE-2025-24336 was published Jan 31, 2025
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.5 prior to... Low Unreviewed
CVE-2023-6195 was published Jan 31, 2025
Out-of-bounds write in some Zoom Workplace Apps may allow an authorized user to conduct a loss of... Low Unreviewed
CVE-2025-0144 was published Jan 30, 2025
Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an... Low Unreviewed
CVE-2025-0146 was published Jan 30, 2025
DevDojo Voyager vulnerable to reflected Cross-site Scripting Low
CVE-2024-55416 was published for tcg/voyager (Composer) Jan 30, 2025
In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining... Low Unreviewed
CVE-2024-57965 was published Jan 29, 2025
Potential DoS when using ContextLines integration Low
GHSA-r5w7-f542-q2j4 was published for @sentry/astro (npm) Jan 28, 2025
mstrokin
NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker... Low Unreviewed
CVE-2024-0149 was published Jan 28, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3,... Low Unreviewed
CVE-2025-24121 was published Jan 28, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7... Low Unreviewed
CVE-2025-24100 was published Jan 28, 2025
An authentication issue was addressed with improved state management. This issue is fixed in iOS... Low Unreviewed
CVE-2025-24141 was published Jan 28, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2025-24145 was published Jan 28, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2024-54475 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database