Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,740
Maven
5,000+
npm
4,338
NuGet
765
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

153 advisories

Loading
In PreferencesHelper.java, an uncaught exception may cause the device to get stuck in a boot loop... Moderate Unreviewed
CVE-2023-21087 was published Apr 19, 2023
Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the... Moderate Unreviewed
CVE-2024-13417 was published Feb 6, 2025
IBM EntireX 11.1 could allow a local user to cause a denial of service due to an unhandled error... Moderate Unreviewed
CVE-2025-0158 was published Feb 6, 2025
Uncaught exception in OpenBMC Firmware for the Intel(R) Server M50FCP Family and Intel(R) Server... Moderate Unreviewed
CVE-2025-20097 was published Feb 13, 2025
engine.io Uncaught Exception vulnerability Moderate
CVE-2023-31125 was published for engine.io (npm) May 3, 2023
With a specially crafted Python script, an attacker could send continuous startMeasurement... Moderate Unreviewed
CVE-2025-24836 was published Feb 14, 2025
Uncaught Panic in ORML Rewards Pallet High
GHSA-5v93-9mqw-p9mh was published for orml-rewards (Rust) Feb 14, 2025
Namada-apps allows Post-Genesis Validator Bypass Critical
GHSA-2gw2-qgjg-xh6p was published for namada-apps (Rust) Feb 20, 2025
In thermal, there is a possible memory corruption due to an uncaught exception. This could lead... Moderate Unreviewed
CVE-2023-20628 was published Mar 7, 2023
A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS... High Unreviewed
CVE-2025-20172 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20171 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20173 was published Feb 5, 2025
Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to... Moderate Unreviewed
CVE-2024-56946 was published Feb 3, 2025
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling.... High Unreviewed
CVE-2023-52342 was published Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20049 was published Apr 1, 2024
Formwork improperly validates input of User role preventing site and panel availability High
GHSA-c85w-x26q-ch87 was published for getformwork/formwork (Composer) Mar 1, 2025
Kyokito1412 giuscris
Credited to Kyokito1412 and giuscris
Go Ethereum vulnerable to DoS via malicious p2p message Moderate
CVE-2025-24883 was published for github.com/ethereum/go-ethereum (Go) Jan 30, 2025
iam-ned
Credited to iam-ned
An unhandled exception in the danny-avila/librechat repository, version git 600d217, can cause... Moderate Unreviewed
CVE-2024-11173 was published Mar 20, 2025
mintplex-labs/anything-llm version git 6dc3642 contains an unauthenticated Denial of Service (DoS... High Unreviewed
CVE-2024-8249 was published Mar 20, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20176 was published Feb 5, 2025
PyTorch Lightning denial of service vulnerability High
CVE-2024-8020 was published for pytorch-lightning (pip) Mar 20, 2025
Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command... High Unreviewed
CVE-2025-3083 was published Apr 1, 2025
NLnet Labs Krill supports direct access to the RRDP repository content through its built-in web... High Unreviewed
CVE-2023-0158 was published Jan 17, 2023
Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact:... High Unreviewed
CVE-2024-58112 was published Apr 7, 2025
Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact:... High Unreviewed
CVE-2024-58111 was published Apr 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database