GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Critical

CVE-2025-62877 was published for github.com/harvester/harvester-installer (Go) Jan 5, 2026

Moderate

CVE-2025-66482 was published for misskey-js (npm) Dec 15, 2025

High

CVE-2025-66414 was published for @modelcontextprotocol/sdk (npm) Dec 2, 2025

Critical

CVE-2025-34351 was published for ray (pip) Nov 27, 2025

High

CVE-2025-13357 was published for github.com/hashicorp/terraform-provider-vault (Go) Nov 21, 2025

Moderate

CVE-2025-64135 was published for io.jenkins.plugins:eggplant-runner (Maven) Oct 29, 2025

High

CVE-2023-27524 was published for apache-superset (pip) Apr 24, 2023

Critical

CVE-2020-13927 was published for apache-airflow (pip) Apr 30, 2021

ProTip! Advisories are also available from the GraphQL API