Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
42
GitHub Actions
43
Go
3,153
Maven
5,000+
npm
5,000+
NuGet
861
pip
4,451
Pub
12
RubyGems
991
Rust
1,179
Swift
50
Unreviewed advisories
All unreviewed
5,000+

100 advisories

Loading
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain... Moderate Unreviewed
CVE-2026-21736 was published Mar 9, 2026
In dumpBitmapsProto of ActivityManagerService.java, there is a possible way for an app to access... High Unreviewed
CVE-2026-0047 was published Mar 2, 2026
RTU500 web interface: An unprivileged user can read user management information. The information... Moderate Unreviewed
CVE-2026-1772 was published Feb 24, 2026
Dell Update Package (DUP) Framework, versions 23.12.00 through 24.12.00, contains an Improper... High Unreviewed
CVE-2026-23857 was published Feb 12, 2026
Moodle authentication bypass vulnerability High
CVE-2025-67848 was published for moodle/moodle (Composer) Feb 3, 2026
Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an... High Unreviewed
CVE-2026-20817 was published Jan 13, 2026
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges Critical Unreviewed
CVE-2025-46066 was published Jan 12, 2026
Insufficient permission validation in Checkmk versions prior to 2.4.0p17 and 2.3.0p42 allow low... Moderate Unreviewed
CVE-2025-64997 was published Dec 18, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-43527 was published Dec 12, 2025
APTIOV contains a vulnerability in BIOS where a user may cause “Improper Handling of Insufficient... High Unreviewed
CVE-2025-58770 was published Dec 12, 2025
Insufficient permission validation on multiple REST API endpoints in Checkmk 2.2.0, 2.3.0, and 2... Moderate Unreviewed
CVE-2025-58121 was published Nov 18, 2025
Insufficient permission validation in Checkmk 2.4.0 before version 2.4.0p16 allows low-privileged... Moderate Unreviewed
CVE-2025-58122 was published Nov 18, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain... High Unreviewed
CVE-2025-58410 was published Nov 17, 2025
Dell Repository Manager (DRM), versions 3.4.7 and 3.4.8, contains an Improper Handling of... High Unreviewed
CVE-2025-45376 was published Sep 29, 2025
Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands Moderate
CVE-2025-58457 was published for org.apache.zookeeper:zookeeper (Maven) Sep 24, 2025
cai0duque Credited to cai0duque
Improper handling of insufficient permissions or privileges in Windows Cloud Files Mini Filter... High Unreviewed
CVE-2025-50170 was published Aug 12, 2025
Kernel software installed and running inside an untrusted/rich execution environment (REE) could... Critical Unreviewed
CVE-2025-6573 was published Aug 9, 2025
Software installed and run as a non-privileged user may conduct ptrace system calls to issue... High Unreviewed
CVE-2025-8109 was published Aug 4, 2025
Improper handling of insufficient permissions or privileges in Microsoft Teams allows an... Low Unreviewed
CVE-2025-49731 was published Jul 8, 2025
Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows... Moderate Unreviewed
CVE-2025-27024 was published Jul 2, 2025
The target device exposes a service on a specific TCP port with a configured endpoint. The... High Unreviewed
CVE-2025-27025 was published Jul 2, 2025
Software installed and running inside a Guest VM may conduct improper GPU system calls to prevent... Moderate Unreviewed
CVE-2025-46708 was published Jun 27, 2025
A improper handling of insufficient permissions or privileges in Fortinet FortiPAM 1.4.0 through... Moderate Unreviewed
CVE-2025-22256 was published Jun 10, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2025-25179 was published Jun 2, 2025
An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow... Moderate Unreviewed
CVE-2025-2503 was published May 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database