GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,677

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

333 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cryptographic validation of upgrade images could be circumventing by dropping a specifically... Moderate Unreviewed

CVE-2025-54549 was published Oct 30, 2025

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or... High Unreviewed

CVE-2025-34503 was published Oct 25, 2025

The WinVerifyTrust function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows... High Unreviewed

CVE-2013-3900 was published May 3, 2022

In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly... High Unreviewed

CVE-2025-47827 was published Jun 5, 2025

A spoofing vulnerability exists when Windows incorrectly validates file signatures, aka 'Windows... Low Unreviewed

CVE-2020-1464 was published May 24, 2022

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate... High Unreviewed

CVE-2020-2021 was published May 24, 2022

An Improper Verification of Cryptographic Signature vulnerability [CWE-347] in FortiClient MacOS... High Unreviewed

CVE-2025-46774 was published Oct 14, 2025

An Improper Verification of Cryptographic Signature vulnerability in the update process of... Critical Unreviewed

CVE-2023-5347 was published Jan 9, 2024

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to Improper... Critical Unreviewed

CVE-2025-9485 was published Oct 4, 2025

E3 Site Supervisor Control (firmware version < 2.31F01) firmware upgrade packages are unsigned.... High Unreviewed

CVE-2025-52550 was published Oct 1, 2025

The /n software IPWorks SSH library SFTPServer component can be induced to make unintended... Low Unreviewed

CVE-2024-6580 was published Jul 8, 2024

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW... Moderate Unreviewed

CVE-2025-7937 was published Sep 19, 2025

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM... Moderate Unreviewed

CVE-2025-6198 was published Sep 19, 2025

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed

CVE-2025-20248 was published Sep 10, 2025

An improper verification of cryptographic signature vulnerability was identified in GitHub... Moderate Unreviewed

CVE-2025-23369 was published Jan 21, 2025

An insufficiently secured internal function allows session generation for arbitrary users. The... High Unreviewed

CVE-2025-30064 was published Aug 27, 2025

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized... Moderate Unreviewed

CVE-2025-55229 was published Aug 21, 2025

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that... High Unreviewed

CVE-2025-4371 was published Aug 18, 2025

A vulnerability has been identified in Mendix SAML (Mendix 10.12 compatible) (All versions < V4.0... High Unreviewed

CVE-2025-40758 was published Aug 14, 2025

An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on... Critical Unreviewed

CVE-2025-54982 was published Aug 5, 2025

It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software,... Critical Unreviewed

CVE-2025-8454 was published Aug 1, 2025

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in... Moderate Unreviewed

CVE-2025-43185 was published Jul 30, 2025

A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Moderate Unreviewed

CVE-2025-43023 was published Jul 28, 2025

A vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected... Moderate Unreviewed

CVE-2025-23364 was published Jul 8, 2025

Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with... Moderate Unreviewed

CVE-2024-36347 was published Jun 28, 2025

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

333 advisories