Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,779
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,973
NuGet
715
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+

90 advisories

Loading
This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and... Low Unreviewed
CVE-2024-27835 was published May 14, 2024
Broken Authentication vulnerability discovered in OpenText™ iManager 3.2.6.0200. This... Low Unreviewed
CVE-2024-3487 was published May 15, 2024
A vulnerability was found in Emlog Pro 2.3.4. It has been classified as problematic. This affects... Low Unreviewed
CVE-2024-5044 was published May 17, 2024
An issue was discovered in Samsung Mobile Processor, Automotive Processor, and Modem Exynos 9820,... Low Unreviewed
CVE-2023-50804 was published Jun 5, 2024
Improper authentication in zenml Low
CVE-2024-2213 was published for zenml (pip) Jun 6, 2024
An authentication issue was addressed with improved state management. This issue is fixed in... Low Unreviewed
CVE-2024-27867 was published Jun 26, 2024
In JetBrains TeamCity before 2024.07 an OAuth code for JetBrains Space could be stolen via Space... Low Unreviewed
CVE-2024-41829 was published Jul 22, 2024
An authentication issue was addressed with improved state management. This issue is fixed in... Low Unreviewed
CVE-2024-40778 was published Jul 30, 2024
Duende IdentityServer has insufficient validation of DPoP cnf claim in Local APIs Low
CVE-2024-49755 was published for Duende.IdentityServer (NuGet) Oct 28, 2024
gitsign may use incorrect Rekor entries during verification Low
CVE-2024-51746 was published for github.com/sigstore/gitsign (Go) Nov 5, 2024
adityasaky
Symfony's `Security::login` does not take into account custom `user_checker` Low
CVE-2024-50341 was published for symfony/security-bundle (Composer) Nov 6, 2024
94noni xabbuh
lxd has a restricted TLS certificate privilege escalation when in PKI mode Low
CVE-2024-6219 was published for github.com/canonical/lxd (Go) Dec 9, 2024
markylaing
There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed
CVE-2020-9250 was published Dec 20, 2024
A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as... Low Unreviewed
CVE-2025-1880 was published Mar 3, 2025
Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion... Low Unreviewed
CVE-2024-38822 was published Jun 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database