Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,426
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,670
Pub
13
RubyGems
1,029
Rust
1,212
Swift
53
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Loading
Juju affected by timing ownership claim attack on new external back-end secrets Moderate
CVE-2026-32691 was published for github.com/juju/juju (Go) Mar 19, 2026
hpidcock Credited to hpidcock
It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool... Low Unreviewed
CVE-2025-5467 was published Dec 10, 2025
A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated... Moderate Unreviewed
CVE-2025-14262 was published Dec 8, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 17.10 before 18.2.7, 18... Low Unreviewed
CVE-2025-5069 was published Sep 26, 2025
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed
CVE-2024-52561 was published Jun 3, 2025
Lemmy user purging users or communities or banning users can delete images they didn't upload/exclusively use Moderate
GHSA-wr2m-38xh-rpc9 was published for lemmy_server (Rust) Apr 8, 2025
Nothing4You Credited to Nothing4You
Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct... Moderate Unreviewed
CVE-2024-45426 was published Feb 25, 2025
Uncontrolled resource consumption in the installer for some Zoom apps for macOS before version 6... Moderate Unreviewed
CVE-2024-45417 was published Feb 25, 2025
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.3 before 17... Low Unreviewed
CVE-2024-9633 was published Nov 14, 2024
Under certain conditions, access to service libraries is granted to account they should not have... Moderate Unreviewed
CVE-2023-29122 was published Nov 5, 2024
IBM Global Configuration Management 7.0.2 and 7.0.3 could allow an authenticated user to archive... Moderate Unreviewed
CVE-2024-41773 was published Aug 20, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16... Critical Unreviewed
CVE-2023-4008 was published Aug 3, 2023
A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to... Moderate Unreviewed
CVE-2023-20043 was published Jan 20, 2023
A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to... High Unreviewed
CVE-2023-20044 was published Jan 20, 2023
The OpenVPN Access Server installer creates a log file readable for everyone, which from version... High Unreviewed
CVE-2022-33737 was published Jul 7, 2022
Philips MRI 1.5T and MRI 3T Version 5.x.x assigns an owner who is outside the intended control... Moderate Unreviewed
CVE-2021-26248 was published Nov 20, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database