Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,016
Maven
5,000+
npm
4,737
NuGet
814
pip
4,347
Pub
12
RubyGems
987
Rust
1,140
Swift
50
Unreviewed advisories
All unreviewed
5,000+

1,419 advisories

Loading
Local privilege escalation in Genetec Update Service. An authenticated, low-privileged, Windows... Moderate Unreviewed
CVE-2025-1789 was published Feb 24, 2026
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on... Moderate Unreviewed
CVE-2026-2026 was published Feb 13, 2026
Incorrect default permissions for some Intel(R) Graphics Driver software within Ring 2:... Moderate Unreviewed
CVE-2025-32453 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Memory and Storage Tool before version 2.5.2... Moderate Unreviewed
CVE-2025-36511 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Battery Life Diagnostic Tool within Ring 3: User... Moderate Unreviewed
CVE-2025-31655 was published Feb 10, 2026
Incorrect default permissions for some Intel(R) Chipset Software before version 10.1.20266.8668... Moderate Unreviewed
CVE-2025-36522 was published Feb 10, 2026
Incorrect default permissions for the Intel(R) Optane(TM) PMem management software before... Moderate Unreviewed
CVE-2025-22849 was published Feb 10, 2026
SprintWork 2.3.1 contains multiple local privilege escalation vulnerabilities through insecure... High Unreviewed
CVE-2020-37160 was published Feb 7, 2026
Tanium addressed an incorrect default permissions vulnerability in Partner Integration. Moderate Unreviewed
CVE-2025-15338 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Comply. Moderate Unreviewed
CVE-2025-15340 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Discover. Moderate Unreviewed
CVE-2025-15339 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Benchmark. Moderate Unreviewed
CVE-2025-15341 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Enforce. Moderate Unreviewed
CVE-2025-15343 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Patch. Moderate Unreviewed
CVE-2025-15337 was published Feb 5, 2026
Tanium addressed an incorrect default permissions vulnerability in Performance. Moderate Unreviewed
CVE-2025-15336 was published Feb 5, 2026
Tanium addressed an information disclosure vulnerability in Threat Response. Moderate Unreviewed
CVE-2025-15335 was published Feb 5, 2026
Tanium addressed an information disclosure vulnerability in Threat Response. Moderate Unreviewed
CVE-2025-15334 was published Feb 5, 2026
Tanium addressed an information disclosure vulnerability in Threat Response. Moderate Unreviewed
CVE-2025-15333 was published Feb 5, 2026
Memu Play 7.1.3 contains an insecure folder permissions vulnerability that allows low-privileged... High Unreviewed
CVE-2020-37129 was published Feb 5, 2026
Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation FREQSHIP-mini for... High Unreviewed
CVE-2025-10314 was published Feb 5, 2026
An issue in Shirt Pocket's SuperDuper! 3.11 and earlier allow a local attacker to modify the... High Unreviewed
CVE-2025-69604 was published Jan 29, 2026
CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege... High Unreviewed
CVE-2025-13905 was published Jan 29, 2026
AutoGPT is Vulnerable to RCE via Disabled Block Execution High
CVE-2026-24780 was published for agpt (pip) Jan 29, 2026
rahulgovind
Credited to rahulgovind
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2026-0705 was published Jan 27, 2026
Improper permissions in the handler for the Custom URL Scheme in ToDesktop Builder v0.33.0 allows... High Unreviewed
CVE-2025-67230 was published Jan 23, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database