Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

274 advisories

Loading
An integer underflow vulnerability has been identified in Aicloud. An authenticated attacker may... Moderate Unreviewed
CVE-2025-59368 was published Nov 25, 2025
Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit... Low Unreviewed
CVE-2025-11931 was published Nov 22, 2025
Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decode_definite_long_string(... High Unreviewed
CVE-2025-64076 was published Nov 18, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61835 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61836 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61826 was published Nov 11, 2025
ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS) Moderate
CVE-2025-62594 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Oct 27, 2025
amethyst0225 jin-156
hanbunny yosiimich
Credited to amethyst0225, jin-156, hanbunny, and yosiimich
In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma:... Moderate Unreviewed
CVE-2022-49650 was published Oct 23, 2025
orx-pinned-vec has undefined behavior in index_of_ptr with empty slices Low
GHSA-h5j3-crg5-8jqm was published for orx-pinned-vec (Rust) Oct 21, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/nldev: Prevent... Moderate Unreviewed
CVE-2022-49199 was published Oct 21, 2025
An integer overflow vulnerability exists in the QuickJS regular expression engine (libregexp) due... High Unreviewed
CVE-2025-62495 was published Oct 16, 2025
In the Linux kernel, the following vulnerability has been resolved: remoteproc: Fix count check... High Unreviewed
CVE-2022-49278 was published Sep 22, 2025
NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a... Moderate Unreviewed
CVE-2025-23335 was published Aug 6, 2025
In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in... Moderate Unreviewed
CVE-2025-38463 was published Jul 25, 2025
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component... High Unreviewed
CVE-2025-3947 was published Jul 10, 2025
The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability... Critical Unreviewed
CVE-2025-2523 was published Jul 10, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap... High Unreviewed
CVE-2025-47130 was published Jul 9, 2025
InCopy versions 20.3, 19.5.3 and earlier are affected by an Integer Underflow (Wrap or Wraparound... High Unreviewed
CVE-2025-47097 was published Jul 9, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap... High Unreviewed
CVE-2025-47128 was published Jul 9, 2025
InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-47136 was published Jul 9, 2025
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-49532 was published Jul 9, 2025
An integer underflow in the image processing binary of the MIB3 infotainment unit allows an... Low Unreviewed
CVE-2023-28902 was published Jun 28, 2025
IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial... High Unreviewed
CVE-2025-1991 was published Jun 28, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/sun4i: dsi: Prevent... Moderate Unreviewed
CVE-2022-50036 was published Jun 18, 2025
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of... High Unreviewed
CVE-2024-54028 was published Jun 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database