Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
74
GitHub Actions
54
Go
4,134
Maven
5,000+
npm
5,000+
NuGet
1,013
pip
5,000+
Pub
13
RubyGems
1,095
Rust
1,419
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,355 advisories

Loading
CWE-732 Incorrect Permission Assignment for Critical Resource vulnerability that could cause... Moderate Unreviewed
CVE-2026-9651 was published Jun 25, 2026
A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on... Moderate Unreviewed
CVE-2026-0271 was published Jun 11, 2026
clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local... High Unreviewed
CVE-2026-26422 was published Jun 7, 2026
In Mimecast Incydr before 2.6.0, arbitrary file access can occur. Moderate Unreviewed
CVE-2026-50590 was published Jun 5, 2026
Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an... Moderate Unreviewed
CVE-2026-10997 was published Jun 5, 2026
A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding... Critical Unreviewed
CVE-2026-10840 was published Jun 4, 2026
Broadcast events allow malicious software to rewrite the device's default Mobile Device... Critical Unreviewed
CVE-2026-50209 was published Jun 4, 2026
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation... High Unreviewed
CVE-2021-4480 was published Jun 3, 2026
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation... High Unreviewed
CVE-2021-4481 was published Jun 3, 2026
Insufficient access control restrictions in the file write tool in Amazon Kiro IDE before version... High Unreviewed
CVE-2026-10591 was published Jun 2, 2026
Incorrect permission assignment for critical resource issue exists in ServerView Agents for... High Unreviewed
CVE-2026-27788 was published Jun 1, 2026
Incorrect permission settings on a critical resource in Suprema BioStar 2 (versions 2.9.3 through... Critical Unreviewed
CVE-2026-9508 was published May 29, 2026
Incorrect permission assignment for a critical resource in Armoury Crate allows a local user to... High Unreviewed
CVE-2026-8070 was published May 29, 2026
An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control... High Unreviewed
CVE-2026-7480 was published May 29, 2026
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.6 and 11.0.0.0,... Moderate Unreviewed
CVE-2026-2254 was published May 27, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43290 was published May 27, 2026
A high-severity vulnerability in the deployment of Genetec RabbitMQ that allows a privilege... High Unreviewed
CVE-2026-25112 was published May 26, 2026
Summarize prior to 0.15.1 contains an insecure file permission vulnerability in the refresh-free... Moderate Unreviewed
CVE-2026-45246 was published May 18, 2026
Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) arp... High Unreviewed
CVE-2026-42937 was published May 13, 2026
Incorrect permission assignment vulnerabilities exist in iControl REST and TMOS shell (tmsh)... High Unreviewed
CVE-2026-40462 was published May 13, 2026
Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh)... High Unreviewed
CVE-2026-41959 was published May 13, 2026
An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an... Moderate Unreviewed
CVE-2026-42058 was published May 13, 2026
A vulnerability exists in an undisclosed BIG-IP TMOS Shell (tmsh) command that may allow an... High Unreviewed
CVE-2026-41217 was published May 13, 2026
Incorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6... High Unreviewed
CVE-2026-8110 was published May 12, 2026
An incorrect permission assignment for critical resource of Ivanti Secure Access Client   before... Moderate Unreviewed
CVE-2026-7431 was published May 12, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database