Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to... Low Unreviewed
CVE-2025-52615 was published Oct 12, 2025
Contrast vulnerability allows arbitrary host data Injection into container VOLUME mount points Low
GHSA-phhq-63jg-fp7r was published for github.com/edgelesssys/contrast (Go) Jul 9, 2025
burgerdev katexochen
thomasten
Credited to burgerdev, katexochen, and thomasten
A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially... Low Unreviewed
CVE-2023-20573 was published Jan 11, 2024
In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3... Low Unreviewed
CVE-2019-13535 was published May 24, 2022
Protection mechanism failure for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Low Unreviewed
CVE-2025-21081 was published May 13, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog
Credited to warriordog
In various functions of ap_input_processor.c, there is a possible way to record audio during a... Low Unreviewed
CVE-2022-20562 was published Dec 21, 2022
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed
CVE-2024-20923 was published Feb 17, 2024
A vulnerability has been found in Union Bank of India Vyom 8.0.34 on Android and classified as... Low Unreviewed
CVE-2025-0575 was published Jan 20, 2025
Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may... Low Unreviewed
CVE-2024-38660 was published Nov 13, 2024
Mattermost Desktop App fails to sufficiently configure Electron Fuses Low
CVE-2024-45835 was published for mattermost-desktop (npm) Sep 16, 2024
Mattermost Desktop App allows for bypassing TCC restrictions on macOS Low
CVE-2024-36287 was published for mattermost-desktop (npm) Jun 14, 2024
A vulnerability has been found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60 and classified as... Low Unreviewed
CVE-2023-4466 was published Dec 29, 2023
Mattermost Desktop fails to correctly handle permissions or prompt the user for consent on... Low Unreviewed
CVE-2023-5875 was published Nov 2, 2023
Agent-to-controller security bypass in Jenkins HashiCorp Vault Plugin Low
CVE-2022-25186 was published for com.datapipe.jenkins.plugins:hashicorp-vault-plugin (Maven) Feb 16, 2022
NotMyFault
Credited to NotMyFault
A user without PR can reset user authentication failures information Low
CVE-2021-32729 was published for org.xwiki.platform:xwiki-platform-security-authentication-script (Maven) Jul 2, 2021
Context isolation bypass in Electron Low
CVE-2020-15215 was published for electron (npm) Oct 6, 2020
nornagon MarshallOfSound
Credited to nornagon and MarshallOfSound
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database