GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,192
Composer 6,030
Erlang 74
GitHub Actions 54
Go 4,082
Maven 6,681
npm 6,640
NuGet 994
pip 5,489
Pub 13
RubyGems 1,095
Rust 1,413
Swift 61

Unreviewed advisories

All unreviewed 309,490

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

60 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An improper neutralization of argument delimiters in a command ('argument injection')... Moderate Unreviewed

CVE-2026-25690 was published May 12, 2026

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM... Moderate Unreviewed

CVE-2025-40948 was published May 12, 2026

Hex-Rays IDA Pro 9.2 and 9.3 before 9.3sp2 does not block Clang dependency-file generation (via... Moderate Unreviewed

CVE-2026-45181 was published May 10, 2026

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0... Moderate Unreviewed

CVE-2026-35153 was published Apr 17, 2026

Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.container_info' parameters... Moderate Unreviewed

CVE-2026-23924 was published Mar 24, 2026

Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the... Moderate Unreviewed

CVE-2026-4438 was published Mar 20, 2026

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo... Moderate Unreviewed

CVE-2026-1715 was published Mar 11, 2026

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo... Moderate Unreviewed

CVE-2026-1716 was published Mar 11, 2026

An input validation vulnerability was reported in the LenovoProductivitySystemAddin used in... Moderate Unreviewed

CVE-2026-1717 was published Mar 11, 2026

An improper neutralization of argument delimiters in a command ('argument injection')... Moderate Unreviewed

CVE-2026-25689 was published Mar 10, 2026

A vulnerability in the Cisco FXOS Software CLI feature for Cisco Secure Firewall ASA Software and... Moderate Unreviewed

CVE-2026-20016 was published Mar 4, 2026

A vulnerability in the CLI of Cisco Secure FTD Software could allow an authenticated, local... Moderate Unreviewed

CVE-2026-20063 was published Mar 4, 2026

Tanium addressed a local privilege escalation vulnerability in Tanium Module Server. Moderate Unreviewed

CVE-2025-15315 was published Feb 10, 2026

Tanium addressed a local privilege escalation vulnerability in Tanium Server. Moderate Unreviewed

CVE-2025-15316 was published Feb 10, 2026

Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the... Moderate Unreviewed

CVE-2026-23766 was published Jan 15, 2026

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')... Moderate Unreviewed

CVE-2025-66002 was published Jan 8, 2026

A flaw was found in libnbd. A malicious actor could exploit this by convincing libnbd to open a... Moderate Unreviewed

CVE-2025-14946 was published Dec 19, 2025

An improper neutralization of argument delimiters in a command vulnerability has been reported to... Moderate Unreviewed

CVE-2025-62847 was published Dec 16, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43905 was published Oct 7, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-36565 was published Oct 7, 2025

An issue was discovered in Commvault before 11.36.60. A security vulnerability has been... Moderate Unreviewed

CVE-2025-57791 was published Aug 20, 2025

Improper neutralization of argument delimiters in a command ('Argument Injection') issue exists... Moderate Unreviewed

CVE-2025-24845 was published Feb 6, 2025

An argument injection vulnerability in the diagnose and import pac commands in WatchGuard... Moderate Unreviewed

CVE-2022-31749 was published Jan 28, 2025

A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated,... Moderate Unreviewed

CVE-2021-1484 was published Nov 15, 2024

A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center... Moderate Unreviewed

CVE-2024-20444 was published Oct 2, 2024

Previous1…3 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

60 advisories