Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,973
NuGet
715
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

128 advisories

Loading
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... High Unreviewed
CVE-2025-43701 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (DataMapper) allows... High Unreviewed
CVE-2025-43697 was published Jun 10, 2025
Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows... High Unreviewed
CVE-2025-43700 was published Jun 10, 2025
A potential security vulnerability has been identified in the HP Support Assistant for versions... High Unreviewed
CVE-2025-43026 was published Jun 5, 2025
CVE-2025-27703 is a privilege escalation vulnerability in the management console of Absolute... High Unreviewed
CVE-2025-27703 was published May 28, 2025
An issue in modernwms v.1.0 allows an attacker view the MD5 hash of the administrator password... High Unreviewed
CVE-2024-57698 was published Apr 29, 2025
This issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4,... High Unreviewed
CVE-2025-31184 was published Apr 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-30449 was published Apr 1, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... High Unreviewed
CVE-2025-30456 was published Apr 1, 2025
An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix... High Unreviewed
CVE-2025-25871 was published Mar 14, 2025
An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via... High Unreviewed
CVE-2025-25711 was published Mar 12, 2025
In dhd_process_full_gscan_result of dhd_pno.c, there is a possible EoP due to an integer overflow... High Unreviewed
CVE-2024-56191 was published Mar 10, 2025
In wl_notify_gscan_event of wl_cfgscan.c, there is a possible out of bounds write due to a... High Unreviewed
CVE-2024-56192 was published Mar 10, 2025
EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to Incorrect Access Control. This... High Unreviewed
CVE-2024-53355 was published Feb 1, 2025
In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections... High Unreviewed
CVE-2024-40672 was published Jan 28, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.7... High Unreviewed
CVE-2024-54557 was published Jan 28, 2025
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low... High Unreviewed
CVE-2023-42231 was published Jan 14, 2025
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low... High Unreviewed
CVE-2023-42228 was published Jan 14, 2025
SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access... High Unreviewed
CVE-2024-54818 was published Jan 8, 2025
The com.windymob.callscreen.ringtone.callcolor.colorphone (aka Color Phone Call Screen Themes)... High Unreviewed
CVE-2024-53934 was published Jan 7, 2025
This issue was addressed with improved validation of the process entitlement and Team ID. This... High Unreviewed
CVE-2023-42867 was published Dec 20, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... High Unreviewed
CVE-2024-44211 was published Dec 20, 2024
In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0, the WriteAcl function deletes... High Unreviewed
CVE-2024-56317 was published Dec 19, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sequoia 15.2... High Unreviewed
CVE-2024-54515 was published Dec 12, 2024
Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers... High Unreviewed
CVE-2024-50920 was published Dec 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database