Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,618
Maven
5,000+
npm
4,255
NuGet
760
pip
4,042
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,286 advisories

Loading
The service employed by Everything, running as SYSTEM, communicates with the lower privileged... High Unreviewed
CVE-2025-12683 was published Nov 4, 2025
Nagios XI versions prior to 2024R1.2 contain a privilege escalation vulnerability related to... High Unreviewed
CVE-2024-14004 was published Oct 31, 2025
An issue in NCR Atleos Terminal Manager (ConfigApp) v3.4.0 allows attackers to escalate... High Unreviewed
CVE-2025-61429 was published Oct 29, 2025
By making minor configuration changes to the TropOS 4th Gen device, an authenticated user with... High Unreviewed
CVE-2025-1037 was published Oct 28, 2025
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is... High Unreviewed
CVE-2025-11086 was published Oct 22, 2025
An attacker may obtain the root shell on the underlying OS system with the restricted conditions... High Unreviewed
CVE-2025-7851 was published Oct 21, 2025
The Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme plugin for... High Unreviewed
CVE-2025-6042 was published Oct 15, 2025
A security issue exists within the x86 Microsoft Installer File (MSI), installed with FTLinx.... High Unreviewed
CVE-2025-9067 was published Oct 14, 2025
A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer... High Unreviewed
CVE-2025-9068 was published Oct 14, 2025
Azure PlayFab Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-59247 was published Oct 9, 2025
A flaw was found in the integration of Active Directory and the System Security Services Daemon ... High Unreviewed
CVE-2025-11561 was published Oct 9, 2025
Tesla Telematics Control Unit (TCU) firmware prior to v2025.14 contains an authentication bypass... High Unreviewed
CVE-2025-34251 was published Oct 7, 2025
Local privilege escalation due to insecure XPC service configuration. The following products are... High Unreviewed
CVE-2025-7779 was published Sep 30, 2025
In a hardened Docker environment, with Enhanced Container Isolation ( ECI https://docs.docker.com... High Unreviewed
CVE-2025-10657 was published Sep 26, 2025
Improper privilege management vulnerability in Novakon P series allows attackers to gain root... High Unreviewed
CVE-2025-9966 was published Sep 23, 2025
Improper Privilege Management vulnerability in GE Vernova S1 Agile Configuration Software on... High Unreviewed
CVE-2025-9038 was published Sep 22, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS... High Unreviewed
CVE-2025-34204 was published Sep 19, 2025
An issue was discovered in PPress 0.0.9 allowing attackers to gain escilated privlidges via... High Unreviewed
CVE-2025-54761 was published Sep 19, 2025
SoftIron HyperCloud 2.5.0 through 2.6.3 may incorrectly add user SSH keys to the administrator... High Unreviewed
CVE-2025-10650 was published Sep 18, 2025
A vulnerability in the command-line interface of HPE Aruba Networking EdgeConnect SD-WAN Gateways... High Unreviewed
CVE-2025-37123 was published Sep 17, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-43333 was published Sep 16, 2025
The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an elevation of privileges... High Unreviewed
CVE-2025-9059 was published Sep 11, 2025
The eudskacs.sys driver version 20250328 shipped with EaseUs Todo Backup 1.2.0.1 fails to... High Unreviewed
CVE-2025-50892 was published Sep 10, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Broadcom SoC modules) allows... High Unreviewed
CVE-2025-53914 was published Sep 9, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows... High Unreviewed
CVE-2025-53913 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database