Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,766
Maven
5,000+
npm
4,371
NuGet
767
pip
4,144
Pub
12
RubyGems
962
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

49 advisories

Loading
Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary... Moderate Unreviewed
CVE-2025-64896 was published Dec 9, 2025
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is... Moderate Unreviewed
CVE-2025-33111 was published Dec 9, 2025
An issue was addressed with improved handling of temporary files. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-40438 was published Jan 11, 2024
Guava vulnerable to insecure use of temporary directory Moderate
CVE-2023-2976 was published for com.google.guava:guava (Maven) Jun 14, 2023
LlamaIndex vulnerable to Creation of Temporary File in Directory with Insecure Permissions High
CVE-2024-12911 was published for llama-index (pip) Mar 20, 2025
A vulnerability in Forescout SecureConnector v11.3.07.0109 on Windows allows unauthenticated... High Unreviewed
CVE-2024-9950 was published Jan 2, 2025
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by... High Unreviewed
CVE-2024-9500 was published Nov 16, 2024
A vulnerability has been identified in TIA Administrator (All versions < V3 SP2). The affected... Low Unreviewed
CVE-2023-38533 was published Jun 11, 2024
A potential elevated privilege issue has been reported with InstallShield built Standalone MSI... High Unreviewed
CVE-2024-7562 was published Jun 12, 2025
.NET Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21173 was published Jan 14, 2025
Photoshop Elements versions 2025.0 and earlier are affected by a Creation of Temporary File in... Moderate Unreviewed
CVE-2025-21162 was published Feb 11, 2025
Local Privilege Escalation in Windows High
CVE-2023-49797 was published for pyinstaller (pip) Dec 9, 2023
Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local... High Unreviewed
CVE-2023-6080 was published Oct 18, 2024
Information Disclosure in Apache Groovy Moderate
CVE-2020-17521 was published for org.codehaus.groovy:groovy (Maven) Dec 9, 2020
SebGondron
Credited to SebGondron
Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5... High Unreviewed
CVE-2024-24693 was published Mar 13, 2024
Insecure permissions in Linksys Velop WiFi 5 (WHW01v1) 1.1.13.202617 allows attackers to escalate... High Unreviewed
CVE-2024-36821 was published Jun 11, 2024
Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A... High Unreviewed
CVE-2023-32450 was published Jul 27, 2023
The C:\Program Files (x86)\Splashtop\Splashtop Software Updater\uninst.exe process creates a... High Unreviewed
CVE-2023-3181 was published Jan 25, 2024
Moodle Double-Caches Content, Potentially Writing to a File System's Tmp Directory Moderate
CVE-2011-4293 was published for moodle/moodle (Composer) May 13, 2022
Local Temp Directory Hijacking Vulnerability High
CVE-2020-27216 was published for org.eclipse.jetty:jetty-webapp (Maven) Nov 4, 2020
JLLeitschuh timtebeek
Credited to JLLeitschuh and timtebeek
A vulnerability was found in insights-client. This security issue occurs because of insecure file... High Unreviewed
CVE-2023-3972 was published Nov 1, 2023
The C:\Windows\Temp\Agent.Package.Availability\Agent.Package.Availability.exe file is... High Unreviewed
CVE-2023-37243 was published Oct 31, 2023
Local Information Disclosure Vulnerability in Netty on Unix-Like systems Moderate
CVE-2021-21290 was published for io.netty:netty (Maven) Feb 8, 2021
JLLeitschuh westonsteimel
Credited to JLLeitschuh and westonsteimel
Creation of Temporary File in Directory with Insecure Permissions in the OpenAPI-Generator online generator Critical
CVE-2021-21428 was published for org.openapitools:openapi-generator-online (Maven) May 11, 2021
JLLeitschuh
Credited to JLLeitschuh
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an... Moderate Unreviewed
CVE-2021-28633 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database