GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,549
Composer 6,122
Erlang 86
GitHub Actions 54
Go 4,175
Maven 6,713
npm 6,687
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,882

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

51 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features... High Unreviewed

CVE-2026-2379 was published Jun 5, 2026

Operation on a Resource after Expiration or Termination (CWE-672) in Kibana can lead to... Moderate Unreviewed

CVE-2026-33463 was published May 28, 2026

Apache::Session versions through 1.94 for Perl re-creates deleted sessions. The session stores... Critical Unreviewed

CVE-2013-10075 was published May 8, 2026

Mattermost versions 10.11.x <= 10.11.10 Fail to invalidate cached permalink preview data when a... Moderate Unreviewed

CVE-2026-1629 was published Mar 16, 2026

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix... High Unreviewed

CVE-2026-23111 was published Feb 13, 2026

In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device... High Unreviewed

CVE-2025-69415 was published Jan 2, 2026

In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of... Low Unreviewed

CVE-2025-64686 was published Nov 10, 2025

When passing through PCI devices, the detach logic in libxl won't remove access permissions to... High Unreviewed

CVE-2025-58149 was published Oct 31, 2025

When the BIG-IP Advanced WAF and ASM security policy and a server-side HTTP/2 profile are... High Unreviewed

CVE-2025-55669 was published Oct 15, 2025

MongoDB Server may allow upsert operations retried within a transaction to violate unique index... Moderate Unreviewed

CVE-2025-10060 was published Sep 5, 2025

In the Linux kernel, the following vulnerability has been resolved: io_uring/futex: ensure... High Unreviewed

CVE-2025-39698 was published Sep 5, 2025

Amazon Cloud Cam is a home security camera that was deprecated on December 2, 2022, is end of... High Unreviewed

CVE-2025-6031 was published Jun 12, 2025

This issue was addressed through improved state management. This issue is fixed in iOS 18.5 and... High Unreviewed

CVE-2025-31253 was published May 13, 2025

Reference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager. Low Unreviewed

CVE-2025-2517 was published Apr 21, 2025

Dell Avamar, version 19.4 or later, contains an access token reuse vulnerability in the AUI. A... Moderate Unreviewed

CVE-2025-21117 was published Feb 5, 2025

In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a... High Unreviewed

CVE-2024-57929 was published Jan 19, 2025

An operation on a resource after expiration or release in Fortinet FortiManager 6.4.12 through 7... High Unreviewed

CVE-2024-47571 was published Jan 14, 2025

UAF vulnerability in the device node access module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-56434 was published Jan 8, 2025

In the Linux kernel, the following vulnerability has been resolved: virtio_net: correct... Moderate Unreviewed

CVE-2024-56674 was published Dec 27, 2024

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix crash caused... Moderate Unreviewed

CVE-2024-49953 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: ACPI: battery: Fix possible... Moderate Unreviewed

CVE-2024-49955 was published Oct 21, 2024

When the NGINX Plus is configured to use the MQTT pre-read module, undisclosed requests can cause... High Unreviewed

CVE-2024-39792 was published Aug 14, 2024

IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2024-31895 was published May 22, 2024

IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2024-31894 was published May 22, 2024

IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2024-31893 was published May 22, 2024

Previous1…3 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

51 advisories