GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,523
Composer 5,676
Erlang 49
GitHub Actions 50
Go 3,623
Maven 6,442
npm 5,927
NuGet 927
pip 4,843
Pub 13
RubyGems 1,045
Rust 1,271
Swift 53

Unreviewed advisories

All unreviewed 299,862

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

496 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenClaw before 2026.3.31 contains a local roots self-whitelisting vulnerability in... Moderate Unreviewed

CVE-2026-41366 was published Apr 28, 2026

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1... Moderate Unreviewed

CVE-2026-21011 was published Apr 13, 2026

The installer certificate files in the …/bootstrap/common/ssl folder do not seem to have... Moderate Unreviewed

CVE-2026-4482 was published Apr 10, 2026

Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2026-33271 was published Apr 2, 2026

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2026-28829 was published Mar 25, 2026

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2026-20693 was published Mar 25, 2026

Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file... Moderate Unreviewed

CVE-2026-29516 was published Mar 16, 2026

An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control... Moderate Unreviewed

CVE-2025-15037 was published Mar 12, 2026

An unauthenticated remote attacker who tricks a user to upload a manipulated HTML file can get... Moderate Unreviewed

CVE-2025-41712 was published Mar 10, 2026

Sensitive information disclosure due to improper configuration of a headless browser. The... Moderate Unreviewed

CVE-2026-28725 was published Mar 6, 2026

Credentials are not deleted from Acronis Agent after plan revocation. The following products are... Moderate Unreviewed

CVE-2025-11790 was published Mar 6, 2026

Credentials are not deleted from Acronis Agent after plan revocation. The following products are... Moderate Unreviewed

CVE-2025-30413 was published Mar 6, 2026

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for... Moderate Unreviewed

CVE-2025-12801 was published Mar 4, 2026

erase-install prior to v40.4 commit 2c31239 writes swiftDialog credential output to a hardcoded... Moderate Unreviewed

CVE-2025-70342 was published Mar 4, 2026

IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0... Moderate Unreviewed

CVE-2025-14604 was published Mar 3, 2026

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File... Moderate Unreviewed

CVE-2026-26100 was published Feb 20, 2026

Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal. Moderate Unreviewed

CVE-2026-1344 was published Feb 18, 2026

Incorrect permission assignment for critical resource for some System Firmware Update Utility ... Moderate Unreviewed

CVE-2025-35999 was published Feb 10, 2026

Docker Desktop for Windows contains multiple incorrect permission assignment vulnerabilities in... Moderate Unreviewed

CVE-2025-14740 was published Feb 4, 2026

Root File System Not Mounted as Read-Only configuration vulnerability. This can allow unintended... Moderate Unreviewed

CVE-2025-52627 was published Feb 3, 2026

Dell PowerScale OneFS, versions 9.5.0.0 through 9.5.1.5, versions 9.6.0.0 through 9.7.1.10,... Moderate Unreviewed

CVE-2026-22280 was published Jan 22, 2026

A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could... Moderate Unreviewed

CVE-2026-20092 was published Jan 21, 2026

An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon... Moderate Unreviewed

CVE-2025-59961 was published Jan 15, 2026

An issue was discovered in DriveLock 24.1 through 24.1.*, 24.2 before 24.2.8, and 25.1 before 25... Moderate Unreviewed

CVE-2025-67794 was published Dec 18, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43470 was published Dec 12, 2025

Previous1…20 Next

Previous 1 2 3 4 5 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

496 advisories