Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,094 advisories

Loading
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21523 was published Jan 21, 2025
When Akka HTTP before 10.5.2 accepts file uploads via the FileUploadDirectives.fileUploadAll... Moderate Unreviewed
CVE-2023-33251 was published May 21, 2023
A privilege escalation vulnerability exists in the affected product. The vulnerability allows low... High Unreviewed
CVE-2024-37369 was published Jun 14, 2024
A privilege escalation vulnerability exists in the affected products which could allow a... High Unreviewed
CVE-2024-6435 was published Jul 16, 2024
CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The... High Unreviewed
CVE-2024-7513 was published Aug 14, 2024
When etcupdate encounters conflicts while merging files, it saves a version containing conflict... Unknown Unreviewed
CVE-2025-0374 was published Jan 30, 2025
An issue was discovered in Akamai Enterprise Application Access (EAA) before 2025-01-17. If an... High Unreviewed
CVE-2025-24527 was published Jan 29, 2025
Insecure Permissions vulnerability in CMSimple v.5.16 allows a remote attacker to obtain... High Unreviewed
CVE-2024-57547 was published Jan 28, 2025
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed
CVE-2023-29092 was published May 9, 2023
An Incorrect Permission Assignment Vulnerability exists in the product and version listed above.... High Unreviewed
CVE-2025-24481 was published Jan 28, 2025
Develocity (formerly Gradle Enterprise) before 2024.1.8 has Incorrect Access Control. Project... High Unreviewed
CVE-2024-46881 was published Jan 26, 2025
Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions. Critical Unreviewed
CVE-2024-55959 was published Jan 21, 2025
The com.glitter.caller.screen (aka iCaller, Caller Theme & Dialer) application through 1.1 for... Critical Unreviewed
CVE-2024-53931 was published Jan 7, 2025
ECOVACS robot lawnmowers and vacuums insecurely store audio files used to indicate that the... Low Unreviewed
CVE-2024-52328 was published Jan 23, 2025
The com.remi.colorphone.callscreen.calltheme.callerscreen (aka Color Phone: Call Screen Theme)... Critical Unreviewed
CVE-2024-53932 was published Jan 7, 2025
A local low-level user on the server machine with credentials to the running OAS services can... High Unreviewed
CVE-2024-11220 was published Dec 6, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). ... Low Unreviewed
CVE-2025-21520 was published Jan 21, 2025
OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation... High Unreviewed
CVE-2023-31871 was published May 18, 2023
Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified ... Moderate Unreviewed
CVE-2010-0488 was published May 2, 2022
Improper permission settings for mobile applications (com.transsion.carlcare) may lead to ... High Unreviewed
CVE-2025-0590 was published Jan 20, 2025
IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow an... Critical Unreviewed
CVE-2024-38337 was published Jan 19, 2025
Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local... High Unreviewed
CVE-2024-9842 was published Nov 12, 2024
Windows Secure Kernel Mode Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21325 was published Jan 17, 2025
Hasleo Backup Suite Free v4.9.4 and before is vulnerable to Insecure Permissions via the File... Moderate Unreviewed
CVE-2024-54910 was published Jan 10, 2025
An authenticated attacker can use this vulnerability to perform a privilege escalation to gain... High Unreviewed
CVE-2024-11497 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database