GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,875
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,698
Maven 6,138
npm 4,325
NuGet 761
pip 4,099
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,642

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

71 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer... Moderate Unreviewed

CVE-2025-59820 was published Nov 26, 2025

N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N... Moderate Unreviewed

CVE-2025-9316 was published Nov 12, 2025

Improper Validation of Specified Quantity in Input vulnerability in TCP Communication Function on... Moderate Unreviewed

CVE-2025-10259 was published Nov 6, 2025

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated... Moderate Unreviewed

CVE-2025-36092 was published Nov 3, 2025

A data corruption vulnerability has been identified in the luksmeta utility when used with the... Moderate Unreviewed

CVE-2025-11568 was published Oct 15, 2025

In AMD Zynq UltraScale+ devices, the lack of address validation when executing CSU runtime... Moderate Unreviewed

CVE-2025-0038 was published Oct 6, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 18.1.6, 18.2... Moderate Unreviewed

CVE-2025-10094 was published Sep 12, 2025

Improper input validation in AMD Power Management Firmware (PMFW) could allow a privileged... Moderate Unreviewed

CVE-2024-36346 was published Sep 6, 2025

In the Linux kernel, the following vulnerability has been resolved: mm/damon/ops-common: ignore... Moderate Unreviewed

CVE-2025-39700 was published Sep 5, 2025

Improper Validation of Specified Quantity in Input vulnerability in calliko Bonus for Woo allows... Moderate Unreviewed

CVE-2025-58835 was published Sep 5, 2025

Improper validation of specified quantity in input issue exists in Real-time Bus Tracking System... Moderate Unreviewed

CVE-2025-43881 was published Jul 23, 2025

Incorrect authentication vulnerability in ParkingDoor. Through this vulnerability it is possible... Moderate Unreviewed

CVE-2025-41100 was published Jul 21, 2025

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid resizing to a... Moderate Unreviewed

CVE-2022-50020 was published Jun 18, 2025

Arbitrary file read in NetScaler Console and NetScaler SDX (SVM) Moderate Unreviewed

CVE-2025-4365 was published Jun 17, 2025

Improper Validation of Specified Quantity in Input vulnerability in Cozmoslabs Profile Builder... Moderate Unreviewed

CVE-2025-49292 was published Jun 6, 2025

A vulnerability in the implementation of the Simple Network Management Protocol Version 3 (SNMPv3... Moderate Unreviewed

CVE-2025-20151 was published May 7, 2025

An Unchecked Input for Loop Condition in RT-Labs P-Net version 1.0.1 or earlier allows an... Moderate Unreviewed

CVE-2025-32399 was published May 7, 2025

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric... Moderate Unreviewed

CVE-2025-3511 was published Apr 25, 2025

On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur... Moderate Unreviewed

CVE-2024-8000 was published Mar 4, 2025

Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds... Moderate Unreviewed

CVE-2023-20508 was published Feb 12, 2025

Improper handling of invalid nested page table entries in the IOMMU may allow a privileged... Moderate Unreviewed

CVE-2023-20582 was published Feb 12, 2025

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to... Moderate Unreviewed

CVE-2023-20515 was published Feb 12, 2025

In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user... Moderate Unreviewed

CVE-2024-56716 was published Dec 29, 2024

IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed

CVE-2024-52901 was published Dec 12, 2024

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed

CVE-2024-9369 was published Nov 27, 2024

Previous1…3 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

71 advisories