GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,410
Composer 4,676
Erlang 34
GitHub Actions 26
Go 2,263
Maven 5,528
npm 3,915
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

426 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). The... Moderate Unreviewed

CVE-2025-30000 was published Apr 8, 2025

An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to self sign... Moderate Unreviewed

CVE-2021-25635 was published Mar 21, 2025

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle ... Moderate Unreviewed

CVE-2025-0254 was published Mar 20, 2025

Improper certificate validation vulnerability in the update functionality in Synology BeeStation... Moderate Unreviewed

CVE-2024-10445 was published Mar 19, 2025

An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below... Moderate Unreviewed

CVE-2023-48785 was published Mar 14, 2025

An improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version... Moderate Unreviewed

CVE-2024-40590 was published Mar 14, 2025

An Improper Certificate Validation vulnerability could allow an authenticated malicious actor... Moderate Unreviewed

CVE-2025-23118 was published Mar 1, 2025

Medixant RadiAnt DICOM Viewer is vulnerable due to failure of the update mechanism to verify the... Moderate Unreviewed

CVE-2025-1001 was published Feb 21, 2025

IBM OpenPages with Watson 8.3 and 9.0 could allow a remote attacker to spoof mail server... Moderate Unreviewed

CVE-2024-49782 was published Feb 20, 2025

Dell BSAFE SSL-J contains an Improper certificate verification vulnerability. A remote attacker... Moderate Unreviewed

CVE-2024-29171 was published Feb 12, 2025

MicroDicom DICOM Viewer version 2024.03 fails to adequately verify the update server's... Moderate Unreviewed

CVE-2025-1002 was published Feb 10, 2025

An Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured,... Moderate Unreviewed

CVE-2025-23091 was published Feb 1, 2025

This vulnerability allows network-adjacent attackers to compromise transport security on affected... Moderate Unreviewed

CVE-2024-23970 was published Jan 31, 2025

IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the... Moderate Unreviewed

CVE-2023-38009 was published Jan 26, 2025

An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to access the Diffie-Hellman (DH)... Moderate Unreviewed

CVE-2024-54847 was published Jan 10, 2025

An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to obtain the EC private key and... Moderate Unreviewed

CVE-2024-54846 was published Jan 10, 2025

An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to obtain the second RSA private... Moderate Unreviewed

CVE-2024-54849 was published Jan 10, 2025

A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for... Moderate Unreviewed

CVE-2025-20126 was published Jan 8, 2025

When using Alt-Svc, ALPN did not properly validate certificates when the original server is... Moderate Unreviewed

CVE-2025-0239 was published Jan 7, 2025

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a... Moderate Unreviewed

CVE-2024-47119 was published Dec 18, 2024

An improper certificate validation vulnerability in Palo Alto Networks PAN-OS software enables an... Moderate Unreviewed

CVE-2024-5918 was published Nov 14, 2024

HCL AppScan Source <= 10.6.0 does not properly validate a TLS/SSL certificate for an executable. Moderate Unreviewed

CVE-2024-30149 was published Oct 31, 2024

IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the... Moderate Unreviewed

CVE-2024-43177 was published Oct 22, 2024

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper... Moderate Unreviewed

CVE-2024-47241 was published Oct 18, 2024

An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass... Moderate Unreviewed

CVE-2024-31955 was published Oct 15, 2024

Previous 1 2 3 4 5 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

426 advisories