Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,771
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,453 advisories

Loading
RuoYi has insecure permissions Moderate
CVE-2024-57438 was published for com.ruoyi:ruoyi (Maven) Jan 29, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2024-44172 was published Jan 28, 2025
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13... Moderate Unreviewed
CVE-2024-54488 was published Jan 28, 2025
An authentication issue was addressed with improved state management. This issue is fixed in iOS... Low Unreviewed
CVE-2025-24141 was published Jan 28, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24114 was published Jan 28, 2025
The issue was addressed by removing the relevant flags. This issue is fixed in watchOS 11.2, iOS... Critical Unreviewed
CVE-2024-54512 was published Jan 28, 2025
MSAL.NET applications targeting Xamarin Android and .NET Android (MAUI) susceptible to local denial of service Low
CVE-2024-27086 was published for Microsoft.Identity.Client (NuGet) Apr 16, 2024
localden ashok672
bgavrilMS gladjohn pmaytak jmprieur christothes ntc-swiss-team
In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security... Moderate Unreviewed
CVE-2024-42013 was published Jan 22, 2025
Vulnerability in Oracle Application Express (component: General). Supported versions that are... Moderate Unreviewed
CVE-2025-21557 was published Jan 21, 2025
Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle... Moderate Unreviewed
CVE-2025-21563 was published Jan 21, 2025
Apache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to different network regions Moderate
CVE-2025-24860 was published for org.apache.cassandra:cassandra-all (Maven) Feb 4, 2025
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component... Moderate Unreviewed
CVE-2025-21561 was published Jan 21, 2025
Vulnerability in the Oracle Life Sciences Argus Safety product of Oracle Health Sciences... Moderate Unreviewed
CVE-2025-21570 was published Jan 21, 2025
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component:... High Unreviewed
CVE-2025-21565 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Moderate Unreviewed
CVE-2025-21567 was published Jan 21, 2025
Vulnerability in the Oracle Hyperion Data Relationship Management product of Oracle Hyperion ... Moderate Unreviewed
CVE-2025-21568 was published Jan 21, 2025
Vulnerability in the Oracle Hyperion Data Relationship Management product of Oracle Hyperion ... Moderate Unreviewed
CVE-2025-21569 was published Jan 21, 2025
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... Moderate Unreviewed
CVE-2025-21553 was published Jan 21, 2025
Vulnerability in the Oracle Communications Order and Service Management product of Oracle... Moderate Unreviewed
CVE-2025-21554 was published Jan 21, 2025
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle... Moderate Unreviewed
CVE-2025-21558 was published Jan 21, 2025
Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle... Moderate Unreviewed
CVE-2025-21562 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21555 was published Jan 21, 2025
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile... Critical Unreviewed
CVE-2025-21556 was published Jan 21, 2025
Authentication Bypass in Hub Business integration in Devolutions Workspace Desktop 2023.1.1.3 and... High Unreviewed
CVE-2023-2257 was published Apr 24, 2023
VMware Fusion contains a local privilege escalation vulnerability. A malicious actor with read... High Unreviewed
CVE-2023-20871 was published Apr 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database