Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,736
Maven
5,000+
npm
4,336
NuGet
764
pip
4,110
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

7,053 advisories

Loading
DNG SDK versions 1.7.0 and earlier are affected by an Out-of-bounds Read vulnerability that could... High Unreviewed
CVE-2025-64893 was published Dec 9, 2025
Out-of-bounds read in Application Information Services allows an authorized attacker to elevate... High Unreviewed
CVE-2025-62572 was published Dec 9, 2025
Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to... High Unreviewed
CVE-2025-62457 was published Dec 9, 2025
Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose... Moderate Unreviewed
CVE-2025-62468 was published Dec 9, 2025
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-62564 was published Dec 9, 2025
Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate... High Unreviewed
CVE-2025-55233 was published Dec 9, 2025
A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap... Moderate Unreviewed
CVE-2025-59391 was published Dec 8, 2025
In ProcessArea of dng_misc_opcodes.cpp, there is a possible out of bounds read due to a buffer... Moderate Unreviewed
CVE-2025-48622 was published Dec 8, 2025
In appendFrom of Parcel.cpp, there is a possible out of bounds read due to a missing bounds check... High Unreviewed
CVE-2025-48596 was published Dec 8, 2025
In initDecoder of C2SoftDav1dDec.cpp, there is a possible out of bounds read due to a heap buffer... High Unreviewed
CVE-2025-48592 was published Dec 8, 2025
A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing... Moderate Unreviewed
CVE-2025-14104 was published Dec 5, 2025
An out-of-bounds read vulnerability exists in the EMF functionality of PDF-XChange Co. Ltd PDF... Moderate Unreviewed
CVE-2025-58113 was published Dec 2, 2025
Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'DownloadFile'... High Unreviewed
CVE-2025-11789 was published Dec 2, 2025
In display, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2025-20776 was published Dec 2, 2025
In display, there is a possible out of bounds read due to a missing bounds check. This could lead... High Unreviewed
CVE-2025-20768 was published Dec 2, 2025
In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2025-20759 was published Dec 2, 2025
Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote... Moderate Unreviewed
CVE-2025-58479 was published Dec 2, 2025
Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical... Moderate Unreviewed
CVE-2025-58476 was published Dec 2, 2025
FeehiCMS fails to enforce server-side immutability Moderate
CVE-2025-63523 was published for feehi/feehicms (Composer) Dec 1, 2025
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the... Moderate Unreviewed
CVE-2025-41739 was published Dec 1, 2025
LZ4 Java Compression has Out-of-bounds memory operations which can cause DoS High
CVE-2025-12183 was published for at.yawk.lz4:lz4-java (Maven) Nov 28, 2025
Marcono1234 pjfanning
Credited to Marcono1234 and pjfanning
Vulnerability of accessing invalid memory in the component driver module. Impact: Successful... Moderate Unreviewed
CVE-2025-58314 was published Nov 28, 2025
Out-of-bounds Read vulnerability in ASR1903、ASR3901 in ASR Lapwing_Linux on Linux (nr_fw modules)... High Unreviewed
CVE-2025-13735 was published Nov 26, 2025
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges... Critical Unreviewed
CVE-2025-64656 was published Nov 26, 2025
The fetch function in file thinkphp\library\think\Template.php in ThinkPHP 5.0.24 allows... High Unreviewed
CVE-2025-63889 was published Nov 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database