GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,544
Composer 5,144
Erlang 40
GitHub Actions 38
Go 2,850
Maven 6,221
npm 4,485
NuGet 779
pip 4,238
Pub 12
RubyGems 975
Rust 1,093
Swift 48

Unreviewed advisories

All unreviewed 286,343

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

357 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper... High Unreviewed

CVE-2025-36418 was published Jan 20, 2026

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW... High Unreviewed

CVE-2025-12006 was published Jan 16, 2026

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM... High Unreviewed

CVE-2025-12007 was published Jan 16, 2026

Improper verification of cryptographic signature in Windows Admin Center allows an authorized... High Unreviewed

CVE-2026-20965 was published Jan 13, 2026

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary... Moderate Unreviewed

CVE-2025-68972 was published Dec 28, 2025

Ever Gauzy v0.281.9 contains a JWT authentication vulnerability that allows attackers to exploit... Critical Unreviewed

CVE-2023-53951 was published Dec 19, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... Moderate Unreviewed

CVE-2025-43521 was published Dec 12, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... Low Unreviewed

CVE-2025-43522 was published Dec 12, 2025

Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via triggers. An attacker... Moderate Unreviewed

CVE-2025-59803 was published Dec 11, 2025

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before... Moderate Unreviewed

CVE-2025-55311 was published Dec 11, 2025

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed

CVE-2025-64786 was published Dec 9, 2025

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed

CVE-2025-64787 was published Dec 9, 2025

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0,... Critical Unreviewed

CVE-2025-59719 was published Dec 9, 2025

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0... Critical Unreviewed

CVE-2025-59718 was published Dec 9, 2025

Improper verification of cryptographic signatures in the patch management component of Ivanti... High Unreviewed

CVE-2025-13662 was published Dec 9, 2025

XML-Sig versions 0.27 through 0.67 for Perl incorrectly validates XML files if signatures are... Critical Unreviewed

CVE-2025-40934 was published Nov 27, 2025

GoSign Desktop versions 2.4.0 and earlier use an unsigned update manifest for distributing... High Unreviewed

CVE-2025-34324 was published Nov 18, 2025

Improper verification of cryptographic signature in the installer for Zoom Workplace VDI Client... High Unreviewed

CVE-2025-64740 was published Nov 13, 2025

In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows... High Unreviewed

CVE-2025-64456 was published Nov 10, 2025

Improper authentication in the API authentication middleware of HCL DevOps Loop allows... High Unreviewed

CVE-2025-55278 was published Nov 6, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed

CVE-2025-43468 was published Nov 4, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... Moderate Unreviewed

CVE-2025-43390 was published Nov 4, 2025

Cryptographic validation of upgrade images could be circumventing by dropping a specifically... Moderate Unreviewed

CVE-2025-54549 was published Oct 30, 2025

A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function... Moderate Unreviewed

CVE-2025-12295 was published Oct 27, 2025

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or... High Unreviewed

CVE-2025-34503 was published Oct 25, 2025

Previous1…15 Next

Previous 1 2 3 4 5 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

357 advisories