Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

254 advisories

Loading
In Modem, there is a possible system crash due to incorrect error handling. This could lead to... High Unreviewed
CVE-2025-20762 was published Jan 6, 2026
In Modem, there is a possible read of uninitialized heap data due to an uncaught exception. This... High Unreviewed
CVE-2025-20760 was published Jan 6, 2026
Pexip Infinity 35.0 through 37.2 before 38.0 has Improper Input Validation in signalling that... High Unreviewed
CVE-2025-48704 was published Dec 25, 2025
Pexip Infinity 33.0 through 37.0 before 37.1 has improper input validation in signaling that... High Unreviewed
CVE-2025-32096 was published Dec 25, 2025
Pexip Infinity 35.0 through 38.1 before 39.0, in non-default configurations that use Direct Media... High Unreviewed
CVE-2025-66443 was published Dec 25, 2025
Pexip Infinity before 39.0 has Improper Input Validation in the media implementation, allowing a... High Unreviewed
CVE-2025-66379 was published Dec 25, 2025
Pexip Infinity before 37.0 has improper input validation in signalling that allows a remote... High Unreviewed
CVE-2025-32095 was published Dec 25, 2025
wb2osz/direwolf (Dire Wolf) versions up to and including 1.8, prior to commit 3658a87, contain a... High Unreviewed
CVE-2025-34458 was published Dec 23, 2025
An issue was discovered in Open5GS 2.7.5-49-g465e90f, when processing a PFCP Session... High Unreviewed
CVE-2025-65559 was published Dec 18, 2025
MongoDB Server may experience an invariant failure during batched delete operations when handling... High Unreviewed
CVE-2025-13644 was published Nov 25, 2025
Reachable Assertion vulnerability in Open5GS up to version 2.7.5 allows attackers with... High Unreviewed
CVE-2025-41068 was published Oct 27, 2025
Reachable Assertion vulnerability in Open5GS up to version 2.7.5 allows attackers with... High Unreviewed
CVE-2025-41067 was published Oct 27, 2025
quic-go: Panic occurs when queuing undecryptable packets after handshake completion High
CVE-2025-59530 was published for github.com/quic-go/quic-go (Go) Oct 10, 2025
rsukhodolskyi
Credited to rsukhodolskyi
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Remove... High Unreviewed
CVE-2025-39803 was published Sep 15, 2025
Transient DOS while creating NDP instance. High Unreviewed
CVE-2025-27073 was published Aug 6, 2025
Transient DOS while processing an ANQP message. High Unreviewed
CVE-2025-27066 was published Aug 6, 2025
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE... High Unreviewed
CVE-2025-21452 was published Aug 6, 2025
FlashMQ v1.14.0 was discovered to contain an assertion failure in the function PublishCopyFactory... High Unreviewed
CVE-2024-42644 was published Jul 29, 2025
An issue in FlashMQ v1.14.0 allows attackers to cause an assertion failure via sending a crafted... High Unreviewed
CVE-2024-42645 was published Jul 29, 2025
A denial of service vulnerability exists in the Distributed Transaction Commit/Abort Operation... High Unreviewed
CVE-2025-46354 was published Jul 22, 2025
A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a... High Unreviewed
CVE-2025-36512 was published Jul 22, 2025
If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale... High Unreviewed
CVE-2025-40777 was published Jul 16, 2025
A Reachable Assertion vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-52964 was published Jul 11, 2025
In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2... High Unreviewed
CVE-2025-49630 was published Jul 10, 2025
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database