Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,685
Maven
5,000+
npm
4,318
NuGet
760
pip
4,092
Pub
12
RubyGems
958
Rust
1,063
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

957 advisories

Loading
NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when... High Unreviewed
CVE-2025-7007 was published Dec 1, 2025
NULL pointer dereference in get_san_or_cn_from_cert() in src/coap_openssl.c in OISM libcoap 4.3.5... High Unreviewed
CVE-2025-65494 was published Nov 24, 2025
NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to... High Unreviewed
CVE-2025-65493 was published Nov 24, 2025
A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07... High Unreviewed
CVE-2025-63929 was published Nov 12, 2025
NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The... High Unreviewed
CVE-2025-59777 was published Nov 10, 2025
An issue was discovered in AnyDesk through 9.0.4. Remote Denial of Service can occur because of... High Unreviewed
CVE-2025-27917 was published Nov 6, 2025
An issue was discovered in the NPU driver in Samsung Mobile Processor Exynos 1280, 2200, 1380,... High Unreviewed
CVE-2025-54334 was published Nov 4, 2025
An issue was discovered in NPU in Samsung Mobile Processor Exynos through July 2025. There is a... High Unreviewed
CVE-2025-54332 was published Nov 4, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61106 was published Oct 28, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61103 was published Oct 28, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61107 was published Oct 28, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61104 was published Oct 28, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61102 was published Oct 27, 2025
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61100 was published Oct 27, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61101 was published Oct 27, 2025
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61099 was published Oct 27, 2025
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2025-61105 was published Oct 27, 2025
Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup... High Unreviewed
CVE-2025-50950 was published Oct 23, 2025
A NULL pointer dereference in the sub_41773C function of TOTOLINK N600R v4.3.0cu.7866_B20220506... High Unreviewed
CVE-2025-60336 was published Oct 22, 2025
A NULL pointer dereference in the main function of TOTOLINK N600R v4.3.0cu.7866_B20220506 allows... High Unreviewed
CVE-2025-60335 was published Oct 22, 2025
A NULL pointer dereference in the SetWLanRadioSettings function of D-Link DIR-823G A1 v1.0.2B05... High Unreviewed
CVE-2025-60332 was published Oct 22, 2025
When a per-request policy is configured on a BIG-IP APM portal access virtual server, undisclosed... High Unreviewed
CVE-2025-61960 was published Oct 15, 2025
When HTTP/2 Ingress is configured, undisclosed traffic can cause the Traffic Management... High Unreviewed
CVE-2025-58120 was published Oct 15, 2025
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service over a... High Unreviewed
CVE-2025-55698 was published Oct 14, 2025
SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service High Unreviewed
CVE-2025-9817 was published Oct 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database