Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,807
Erlang
36
GitHub Actions
31
Go
2,390
Maven
5,000+
npm
4,026
NuGet
720
pip
3,815
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

76 advisories

Loading
Incorrect authentication vulnerability in ParkingDoor. Through this vulnerability it is possible... Moderate Unreviewed
CVE-2025-41100 was published Jul 21, 2025
resolv vulnerable to DoS via insufficient DNS domain name length validation Moderate
CVE-2025-24294 was published for resolv (RubyGems) Jul 15, 2025
Arbitrary file read in NetScaler Console and NetScaler SDX (SVM) Moderate Unreviewed
CVE-2025-4365 was published Jun 17, 2025
Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder... Moderate Unreviewed
CVE-2025-49292 was published Jun 6, 2025
Mautic's Predictable Page Indexing Might Lead to Sensitive Data Exposure Moderate
CVE-2025-5257 was published for mautic/core (Composer) May 28, 2025
An Unchecked Input for Loop Condition in RT-Labs P-Net version 1.0.1 or earlier allows an... Moderate Unreviewed
CVE-2025-32399 was published May 7, 2025
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric... Moderate Unreviewed
CVE-2025-3511 was published Apr 25, 2025
GoBGP crashes in the flowspec parser Moderate
CVE-2025-43972 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
GoBGP does not properly check the input length Moderate
CVE-2025-43970 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur... Moderate Unreviewed
CVE-2024-8000 was published Mar 4, 2025
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed
CVE-2023-20508 was published Feb 12, 2025
Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed
CVE-2023-20515 was published Feb 12, 2025
Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed
CVE-2023-20582 was published Feb 12, 2025
In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user... Moderate Unreviewed
CVE-2024-56716 was published Dec 29, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed
CVE-2024-52901 was published Dec 12, 2024
Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed
CVE-2024-9369 was published Nov 27, 2024
An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2024-48290 was published Nov 7, 2024
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed
CVE-2024-7316 was published Oct 18, 2024
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed
CVE-2024-8508 was published Oct 3, 2024
The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed
CVE-2024-31416 was published Sep 13, 2024
A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed
CVE-2024-8558 was published Sep 7, 2024
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a... Moderate Unreviewed
CVE-2024-0111 was published Aug 31, 2024
Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed
CVE-2023-31310 was published Aug 13, 2024
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows... Moderate Unreviewed
CVE-2024-6768 was published Aug 12, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database