Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,819
Erlang
36
GitHub Actions
32
Go
2,410
Maven
5,000+
npm
4,046
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

121 advisories

Loading
iSTAR Ultra performs a firmware verification on boot, however the verification does not inspect... Critical Unreviewed
CVE-2025-53696 was published Jul 28, 2025
RuoYi vulnerable to arbitrary file download High
CVE-2023-27025 was published for com.ruoyi:ruoyi (Maven) Apr 2, 2023
achibear
The cross-browser document creation component developed by Digitware System Integration... High Unreviewed
CVE-2025-7620 was published Jul 14, 2025
Vulnerability in PointCloudLibrary PCL (surface/src/3rdparty/opennurbs modules). This... Low Unreviewed
CVE-2025-52937 was published Jun 23, 2025
Download of Code Without Integrity Check vulnerability in Centreon web allows Reflected XSS. A... High Unreviewed
CVE-2025-4648 was published May 13, 2025
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series... Moderate Unreviewed
CVE-2022-37908 was published Dec 12, 2022
Nautel VX Series transmitters VX SW v6.4.0 and below was discovered to contain a remote code... Critical Unreviewed
CVE-2025-28236 was published Apr 18, 2025
Siemens LOGO! Soft Comfort (All versions before V8.2) lacks integrity verification of software... Moderate Unreviewed
CVE-2017-12740 was published May 13, 2022
Akeo Consulting Rufus prior to version 2.17.1187 does not adequately validate the integrity of... High Unreviewed
CVE-2017-13083 was published May 13, 2022
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router... High Unreviewed
CVE-2022-46423 was published Dec 20, 2022
TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary... Moderate Unreviewed
CVE-2022-46428 was published Dec 20, 2022
TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute... Moderate Unreviewed
CVE-2022-46430 was published Dec 20, 2022
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5... Critical Unreviewed
CVE-2020-22658 was published Jan 20, 2023
An exploitable firmware modification vulnerability was discovered in WNR612v2 Wireless Routers... High Unreviewed
CVE-2023-23110 was published Feb 2, 2023
The product can be used to distribute malicious code using SDD Device Drivers due to missing... Critical Unreviewed
CVE-2025-27593 was published Mar 14, 2025
ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of... Critical Unreviewed
CVE-2023-27574 was published Mar 4, 2023
SunGrow WiNet-S V200.001.00.P025 and earlier versions is missing integrity checks for firmware... High Unreviewed
CVE-2024-50696 was published Feb 26, 2025
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a user to... High Unreviewed
CVE-2024-43169 was published Mar 3, 2025
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application... Moderate Unreviewed
CVE-2023-28818 was published Mar 24, 2023
CWE-494: Download of Code Without Integrity Check vulnerability exists that could render the... High Unreviewed
CVE-2025-1058 was published Feb 13, 2025
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0)... Moderate Unreviewed
CVE-2020-8468 was published May 24, 2022
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW. Moderate Unreviewed
CVE-2023-24503 was published Jul 6, 2023
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW. Moderate Unreviewed
CVE-2023-24500 was published Jul 6, 2023
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... Moderate Unreviewed
CVE-2021-30657 was published May 24, 2022
A vulnerability has been discovered in Rocket.Chat, where editing messages can change the... Moderate Unreviewed
CVE-2023-28317 was published May 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database