Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,489
Maven
5,000+
npm
4,105
NuGet
735
pip
3,927
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

103 advisories

Loading
XWiki Blog Application: Privilege Escalation (PR) from account through blog content High
CVE-2025-58365 was published for org.xwiki.contrib.blog:application-blog-ui (Maven) Sep 8, 2025
In BootROM, there is a possible missing validation for Certificate Type 0. This could lead to... High Unreviewed
CVE-2022-38691 was published Sep 2, 2025
In BootRom, there's a possible unchecked command index. This could lead to local escalation of... High Unreviewed
CVE-2022-38695 was published Sep 2, 2025
In BootRom, there is a possible unchecked write address. This could lead to local escalation of... High Unreviewed
CVE-2022-38694 was published Sep 2, 2025
In multiple locations, there is a possible way that avdtp and avctp channels could be unencrypted... High Unreviewed
CVE-2025-0079 was published Aug 27, 2025
In main of main.cpp, there is a possible way to bypass SELinux due to a logic error in the code.... High Unreviewed
CVE-2025-0078 was published Aug 27, 2025
In multiple locations, there is a possible way to overlay the installation confirmation dialog... High Unreviewed
CVE-2025-0080 was published Aug 27, 2025
Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default... High Unreviewed
CVE-2025-50753 was published Aug 26, 2025
IBM QRadar SIEM 7.5 through 7.5.0 UP13 could allow an authenticated user to escalate their... High Unreviewed
CVE-2025-33120 was published Aug 22, 2025
A vulnerability was found in H3C M2 NAS V100R006. Affected by this vulnerability is an unknown... High Unreviewed
CVE-2025-8907 was published Aug 13, 2025
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2025-40767 was published Aug 12, 2025
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to a privilege escalation caused by an invalid... High Unreviewed
CVE-2025-33109 was published Jul 25, 2025
An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139... High Unreviewed
CVE-2025-46116 was published Jul 21, 2025
A Local Privilege Escalation (LPE) vulnerability was found in libblockdev. Generally, the ... High Unreviewed
CVE-2025-6019 was published Jun 19, 2025
IBM webMethods Integration Server 10.5, 10.7, 10.11, and 10.15 could allow a privileged user to... High Unreviewed
CVE-2025-36048 was published Jun 18, 2025
IBM Security Verify Directory Container 10.0.0.0 through 10.0.3.1 could allow a local user to... High Unreviewed
CVE-2025-1411 was published Jun 15, 2025
IBM Backup, Recovery and Media Services for i 7.4 and 7.5 could allow a user with the capability... High Unreviewed
CVE-2025-33108 was published Jun 14, 2025
A privilege escalation vulnerability may enable a service account to elevate its privileges. ... High Unreviewed
CVE-2024-13090 was published Jun 10, 2025
A vulnerability has been found in Wing FTP Server up to 7.4.3 and classified as critical.... High Unreviewed
CVE-2025-5196 was published May 26, 2025
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 product IBM TCP/IP Connectivity Utilities for i contains a... High Unreviewed
CVE-2025-33103 was published May 17, 2025
BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 or series 5 prior to v9.0... High Unreviewed
CVE-2025-3925 was published May 7, 2025
Tesla Model S oFono Unnecessary Privileges Sandbox Escape Vulnerability. This vulnerability... High Unreviewed
CVE-2024-6030 was published Apr 30, 2025
CWE-250: Execution with Unnecessary Privileges High Unreviewed
CVE-2025-23181 was published Apr 29, 2025
CWE-250: Execution with Unnecessary Privileges High Unreviewed
CVE-2025-23180 was published Apr 29, 2025
IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local... High Unreviewed
CVE-2025-1951 was published Apr 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database