Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,693
Erlang
34
GitHub Actions
28
Go
2,283
Maven
5,000+
npm
3,934
NuGet
708
pip
3,702
Pub
12
RubyGems
919
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,049 advisories

Loading
Microsoft Defender for Endpoint Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-47161 was published May 15, 2025
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS... High Unreviewed
CVE-2025-31221 was published May 13, 2025
This issue was addressed through improved state management. This issue is fixed in watchOS 11.5,... High Unreviewed
CVE-2025-31212 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6,... High Unreviewed
CVE-2025-31232 was published May 13, 2025
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2025-31247 was published May 13, 2025
Improper access control in the memory controller configurations for some Intel(R) Xeon(R) 6... High Unreviewed
CVE-2025-20100 was published May 13, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-31260 was published May 13, 2025
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29973 was published May 13, 2025
Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable... High Unreviewed
CVE-2022-38743 was published Oct 18, 2022
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call. High Unreviewed
CVE-2025-21469 was published May 6, 2025
Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter. High Unreviewed
CVE-2025-21470 was published May 6, 2025
Clustered Data ONTAP versions 9.11.1 through 9.11.1P2 with SnapLock configured FlexGroups are... High Unreviewed
CVE-2022-23241 was published Oct 19, 2022
Improper access control in Azure allows an unauthorized attacker to disclose information over a... High Unreviewed
CVE-2025-33072 was published May 9, 2025
OcoMon 4.0RC1 is vulnerable to Incorrect Access Control. Through a request the user can obtain... High Unreviewed
CVE-2022-40798 was published Oct 19, 2022
Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI... High Unreviewed
CVE-2023-20587 was published Feb 13, 2024
Incorrect access control in the doFilter function of kob latest v1.0.0-SNAPSHOT allows attackers... High Unreviewed
CVE-2025-45609 was published May 5, 2025
Incorrect access control in the component /user/list of Shiro-Action v0.6 allows attackers to... High Unreviewed
CVE-2025-45613 was published May 5, 2025
Incorrect access control in the /system/user/findUserList API of Xinguan v0.0.1-SNAPSHOT allows... High Unreviewed
CVE-2025-45608 was published May 5, 2025
Incorrect access control in the component /scheduleLog/info/1 of PassJava-Platform v3.0.0 allows... High Unreviewed
CVE-2025-45610 was published May 5, 2025
.NET Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21173 was published Jan 14, 2025
Memory corruption during memory mapping into protected VM address space due to incorrect API... High Unreviewed
CVE-2024-49842 was published May 6, 2025
Incorrect access control in the component /config/download of DBSyncer v2.0.6 allows attackers to... High Unreviewed
CVE-2025-45237 was published May 5, 2025
Incorrect access control in the component /api/user/manager of One v1.0 allows attackers to... High Unreviewed
CVE-2025-45614 was published May 5, 2025
Incorrect access control in the component /user/list of production_ssm v0.0.1-SNAPSHOT allows... High Unreviewed
CVE-2025-45617 was published May 5, 2025
x86: unintended memory sharing between guests On Intel systems that support the "virtualize APIC... High Unreviewed
CVE-2022-42327 was published Nov 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database