GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,553
Composer 5,554
Erlang 49
GitHub Actions 49
Go 3,426
Maven 6,365
npm 5,645
NuGet 882
pip 4,670
Pub 13
RubyGems 1,029
Rust 1,212
Swift 53

Unreviewed advisories

All unreviewed 296,685

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,316 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2026-33271 was published Apr 2, 2026

Dell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for Critical... High Unreviewed

CVE-2026-22768 was published Apr 1, 2026

A flaw in Node.js Permission Model filesystem enforcement leaves `fs.realpathSync.native()`... Low Unreviewed

CVE-2026-21715 was published Mar 30, 2026

In TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observe or manipulate... High Unreviewed

CVE-2026-34352 was published Mar 27, 2026

When a certificate and its private key are installed in the Windows machine certificate store... Low Unreviewed

CVE-2026-4761 was published Mar 25, 2026

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2026-28829 was published Mar 25, 2026

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2026-20693 was published Mar 25, 2026

Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file... Moderate Unreviewed

CVE-2026-29516 was published Mar 16, 2026

An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control... Moderate Unreviewed

CVE-2025-15037 was published Mar 12, 2026

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure ... High Unreviewed

CVE-2026-24291 was published Mar 10, 2026

An unauthenticated remote attacker who tricks a user to upload a manipulated HTML file can get... Moderate Unreviewed

CVE-2025-41712 was published Mar 10, 2026

Sensitive information disclosure due to improper configuration of a headless browser. The... Moderate Unreviewed

CVE-2026-28725 was published Mar 6, 2026

Credentials are not deleted from Acronis Agent after plan revocation. The following products are... Moderate Unreviewed

CVE-2025-11790 was published Mar 6, 2026

Credentials are not deleted from Acronis Agent after plan revocation. The following products are... Moderate Unreviewed

CVE-2025-30413 was published Mar 6, 2026

IDC SFX2100 Satalite Recievers set the `/etc/resolv.conf` file to be world-writable by any local... High Unreviewed

CVE-2026-29125 was published Mar 5, 2026

Incorrect permission assignment (world-writable file) in /etc/udhcpc/default.script in... High Unreviewed

CVE-2026-29126 was published Mar 5, 2026

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for... Moderate Unreviewed

CVE-2025-12801 was published Mar 4, 2026

erase-install prior to v40.4 commit 2c31239 writes swiftDialog credential output to a hardcoded... Moderate Unreviewed

CVE-2025-70342 was published Mar 4, 2026

IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0... Moderate Unreviewed

CVE-2025-14604 was published Mar 3, 2026

iBoysoft NTFS for Mac contains a local privilege escalation vulnerability in its privileged... High Unreviewed

CVE-2026-2637 was published Mar 3, 2026

An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly... Critical Unreviewed

CVE-2026-21902 was published Feb 25, 2026

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File... High Unreviewed

CVE-2026-26096 was published Feb 20, 2026

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File... Moderate Unreviewed

CVE-2026-26100 was published Feb 20, 2026

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File... High Unreviewed

CVE-2026-26095 was published Feb 20, 2026

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File... High Unreviewed

CVE-2026-26102 was published Feb 20, 2026

Previous1…53 Next

Previous 1 2 3 4 5 … 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,316 advisories