GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,394
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,314
npm 3,802
NuGet 687
pip 3,479
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,570

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,047 advisories

Filter by severity

Sort by

Least recently updated

In Public Knowledge Project (PKP) OJS, OMP, and OPS before 3.3.0.21 and 3.4.x before 3.4.0.8, an... Critical Unreviewed

CVE-2024-56525 was published Feb 25, 2025

Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission... Moderate Unreviewed

CVE-2025-21106 was published Feb 20, 2025

Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows... Moderate Unreviewed

CVE-2024-20841 was published Mar 5, 2024

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate... High Unreviewed

CVE-2023-27091 was published Apr 4, 2023

When the directory containing the installer does not have sufficiently restrictive file... High Unreviewed

CVE-2022-43702 was published Jul 28, 2023

When the installation directory does not have sufficiently restrictive file permissions, an... High Unreviewed

CVE-2022-43701 was published Jul 28, 2023

NGINX Management Suite default file permissions are set such that an authenticated attacker may... High Unreviewed

CVE-2023-28724 was published Jul 6, 2023

Incorrect default permissions for some Intel(R) GPA and Intel(R) GPA Framework software... Moderate Unreviewed

CVE-2024-42419 was published Feb 13, 2025

Incorrect default permissions for some Intel(R) DSA installer for Windows before version 24.2.19... Moderate Unreviewed

CVE-2024-32942 was published Feb 13, 2025

Incorrect directory permissions for the shared NI RabbitMQ service may allow a local... High Unreviewed

CVE-2024-1156 was published Feb 20, 2024

Incorrect permissions in the installation directories for shared SystemLink Elixir based services... High Unreviewed

CVE-2024-1155 was published Feb 20, 2024

Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed

CVE-2023-31360 was published Feb 11, 2025

Incorrect default permission in AppLock prior to SMR MAr-2024 Release 1 allows local attackers to... Moderate Unreviewed

CVE-2024-20830 was published Mar 5, 2024

An issue found in DUALSPACE Lock Master v.2.2.4 allows a local attacker to cause a denial of... High Unreviewed

CVE-2023-27647 was published Apr 14, 2023

An issue was discovered in TigerGraph Enterprise Free Edition 3.x. It creates an authentication... High Unreviewed

CVE-2023-22951 was published Apr 13, 2023

An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved... Moderate Unreviewed

CVE-2024-21615 was published Apr 12, 2024

In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed

CVE-2024-49742 was published Jan 22, 2025

An issue was discovered in the controller unit of the OpenRISC mor1kx processor. The read/write... High Unreviewed

CVE-2021-41614 was published Apr 18, 2023

Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed

CVE-2024-11468 was published Feb 5, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-24107 was published Jan 28, 2025

In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances... Moderate Unreviewed

CVE-2024-29967 was published Apr 19, 2024

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes... Moderate Unreviewed

CVE-2024-29962 was published Apr 19, 2024

Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed

CVE-2025-22918 was published Feb 3, 2025

Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to... Moderate Unreviewed

CVE-2024-40514 was published Jan 17, 2025

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2025-24140 was published Jan 28, 2025

Previous 1 2 3 4 5 … 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,047 advisories