Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,685
Maven
5,000+
npm
4,318
NuGet
760
pip
4,092
Pub
12
RubyGems
958
Rust
1,063
Swift
45
Unreviewed advisories
All unreviewed
5,000+

609 advisories

Loading
Apache Tomcat Catalina is vulnerable to DoS attack through bypassing of size limits Moderate
CVE-2025-52520 was published for org.apache.tomcat:tomcat-catalina (Maven) Jul 10, 2025
CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c... Moderate Unreviewed
CVE-2025-48172 was published Jul 4, 2025
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent... Moderate Unreviewed
CVE-2025-50404 was published Jul 1, 2025
A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results... Moderate Unreviewed
CVE-2023-28908 was published Jun 28, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf: fix potential 32-bit... Moderate Unreviewed
CVE-2022-50167 was published Jun 18, 2025
A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file... Moderate Unreviewed
CVE-2025-6196 was published Jun 17, 2025
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does... Moderate Unreviewed
CVE-2025-49179 was published Jun 17, 2025
A flaw was found in the Big Requests extension. The request length is multiplied by 4 before... Moderate Unreviewed
CVE-2025-49176 was published Jun 17, 2025
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not... Moderate Unreviewed
CVE-2025-49180 was published Jun 17, 2025
A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug... Moderate Unreviewed
CVE-2025-6035 was published Jun 13, 2025
A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client... Moderate Unreviewed
CVE-2025-47712 was published Jun 9, 2025
A low privileged attacker can set the date of the devices to the 19th of January 2038 an... Moderate Unreviewed
CVE-2025-1235 was published Jun 2, 2025
A integer overflow or wraparound in Fortinet FortiOS versions 7.2.0 through 7.2.7, versions 7.0.0... Moderate Unreviewed
CVE-2025-47294 was published May 28, 2025
A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been... Moderate Unreviewed
CVE-2025-5001 was published May 21, 2025
In the Linux kernel, the following vulnerability has been resolved: crypto: ecdsa - Harden... Moderate Unreviewed
CVE-2025-37984 was published May 20, 2025
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka... Moderate Unreviewed
CVE-2025-40907 was published May 16, 2025
In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications... Moderate Unreviewed
CVE-2025-48175 was published May 16, 2025
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer... Moderate Unreviewed
CVE-2025-48174 was published May 16, 2025
In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow... Moderate Unreviewed
CVE-2025-37857 was published May 9, 2025
In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Prevent integer... Moderate Unreviewed
CVE-2025-37858 was published May 9, 2025
ping in iputils through 20240905 allows a denial of service (application error or incorrect data... Moderate Unreviewed
CVE-2025-47268 was published May 5, 2025
In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: Fix integer... Moderate Unreviewed
CVE-2022-49885 was published May 1, 2025
An integer overflow was addressed with improved input validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31203 was published Apr 29, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential... Moderate Unreviewed
CVE-2022-49404 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: watchdog: rzg2l_wdt: Fix... Moderate Unreviewed
CVE-2022-49387 was published Apr 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database