GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,046
Composer 5,218
Erlang 40
GitHub Actions 40
Go 2,974
Maven 6,256
npm 4,621
NuGet 788
pip 4,317
Pub 12
RubyGems 984
Rust 1,131
Swift 49

Unreviewed advisories

All unreviewed 289,790

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

202 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A maliciously crafted file, when executed on the victim's machine, can lead to privilege... High Unreviewed

CVE-2025-10885 was published Nov 6, 2025

Dell Command Monitor (DCM), versions prior to 10.12.3.28, contains an Execution with Unnecessary... High Unreviewed

CVE-2025-43990 was published Nov 5, 2025

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow a non-root user to gain... High Unreviewed

CVE-2025-33003 was published Oct 31, 2025

Nagios Log Server versions prior to 2024R2.0.3 contain an execution with unnecessary privileges... Critical Unreviewed

CVE-2025-34274 was published Oct 31, 2025

Nagios XI versions prior to 5.8.7 used a temporary directory for Highcharts exports with overly... High Unreviewed

CVE-2021-47700 was published Oct 31, 2025

Nagios XI versions prior to 5.5.7 contain a privilege escalation vulnerability in the MRTG... High Unreviewed

CVE-2018-25123 was published Oct 31, 2025

IBM Sterling Connect Direct for Unix 6.2.0.7 through 6.2.0.9 iFix004, 6.4.0.0 through 6.4.0.2... High Unreviewed

CVE-2025-36137 was published Oct 30, 2025

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP... High Unreviewed

CVE-2025-43017 was published Oct 28, 2025

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network... Critical Unreviewed

CVE-2025-6949 was published Oct 17, 2025

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network... Critical Unreviewed

CVE-2025-6893 was published Oct 17, 2025

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network... Moderate Unreviewed

CVE-2025-6894 was published Oct 17, 2025

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary... Critical Unreviewed

CVE-2025-34515 was published Oct 16, 2025

A vulnerability exists in F5OS-A and F5OS-C system that may allow an authenticated attacker with... High Unreviewed

CVE-2025-57780 was published Oct 15, 2025

A potential vulnerability was reported in PC Manager that could allow a local authenticated user... High Unreviewed

CVE-2025-8486 was published Oct 15, 2025

A vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command that... High Unreviewed

CVE-2025-59481 was published Oct 15, 2025

A vulnerability exists in the iHealth command that may allow an authenticated attacker with at... High Unreviewed

CVE-2025-61958 was published Oct 15, 2025

Clash Verge Rev thru 2.2.3 forces the installation of system services(clash-verge-service) by... High Unreviewed

CVE-2025-50505 was published Oct 7, 2025

IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11... Critical Unreviewed

CVE-2025-36356 was published Oct 6, 2025

A vulnerability in the web API of HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an... Moderate Unreviewed

CVE-2025-37128 was published Sep 17, 2025

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control... Critical Unreviewed

CVE-2025-56557 was published Sep 16, 2025

An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via... Critical Unreviewed

CVE-2025-57119 was published Sep 16, 2025

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a privileged... Moderate Unreviewed

CVE-2024-47120 was published Sep 10, 2025

Due to a missing authentication check in the SAP NetWeaver application on IBM i-series, the... Critical Unreviewed

CVE-2025-42958 was published Sep 9, 2025

In BootROM, there is a possible missing validation for Certificate Type 0. This could lead to... High Unreviewed

CVE-2022-38691 was published Sep 2, 2025

In BootRom, there is a possible unchecked write address. This could lead to local escalation of... High Unreviewed

CVE-2022-38694 was published Sep 2, 2025

Previous 12…9 Next

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

202 advisories