Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,701
Maven
5,000+
npm
4,328
NuGet
761
pip
4,103
Pub
12
RubyGems
958
Rust
1,064
Swift
45
Unreviewed advisories
All unreviewed
5,000+

343 advisories

Loading
A Protection Mechanism Failure vulnerability in kernel filter processing of Juniper Networks... Moderate Unreviewed
CVE-2025-52951 was published Jul 11, 2025
Emerson ValveLink products do not use or incorrectly uses a protection mechanism that provides ... High Unreviewed
CVE-2025-46358 was published Jul 11, 2025
Contrast vulnerability allows arbitrary host data Injection into container VOLUME mount points Low
GHSA-phhq-63jg-fp7r was published for github.com/edgelesssys/contrast (Go) Jul 9, 2025
burgerdev katexochen
thomasten
Credited to burgerdev, katexochen, and thomasten
Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a... High Unreviewed
CVE-2025-49740 was published Jul 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-48003 was published Jul 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-48800 was published Jul 8, 2025
Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an... High Unreviewed
CVE-2025-47159 was published Jul 8, 2025
Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-47984 was published Jul 8, 2025
A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.10.0), RUGGEDCOM... High Unreviewed
CVE-2025-41224 was published Jul 8, 2025
An attacker was able to bypass the `connect-src` directive of a Content Security Policy by... Critical Unreviewed
CVE-2025-6427 was published Jun 26, 2025
The application fails to implement several security headers. These headers help increase the... Moderate Unreviewed
CVE-2025-49193 was published Jun 12, 2025
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-47160 was published Jun 10, 2025
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny... High Unreviewed
CVE-2025-32725 was published Jun 10, 2025
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny... High Unreviewed
CVE-2025-33050 was published Jun 10, 2025
A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS... High Unreviewed
CVE-2025-31189 was published May 30, 2025
There is a possible bypass of carrier restrictions due to an unusual root cause. This could lead... High Unreviewed
CVE-2025-27700 was published May 27, 2025
Spring Security authorization bypass for method security annotations on private methods Critical
CVE-2025-41232 was published for org.springframework.security:spring-security-aspects (Maven) May 21, 2025
tomabai
Credited to tomabai
Protection mechanism failure for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Low Unreviewed
CVE-2025-21081 was published May 13, 2025
A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS... High Unreviewed
CVE-2025-31244 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6,... High Unreviewed
CVE-2025-31224 was published May 13, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog
Credited to warriordog
uTLS ServerHellos are accepted without checking TLS 1.3 downgrade canaries Moderate
GHSA-pmc3-p9hx-jq96 was published for github.com/refraction-networking/utls (Go) Apr 23, 2025
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to... Moderate Unreviewed
CVE-2025-27472 was published Apr 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-26637 was published Apr 8, 2025
An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in... High Unreviewed
CVE-2025-21384 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database