Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

452 advisories

Loading
An attacker that gains SSH access to an unprivileged account may be able to disrupt services ... Moderate Unreviewed
CVE-2025-59459 was published Oct 27, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.7 before 18.3.5, 18... Moderate Unreviewed
CVE-2025-11974 was published Oct 27, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Moderate Unreviewed
CVE-2025-53069 was published Oct 21, 2025
rplay through 3.3.2 allows attackers to cause a denial of service (SIGSEGV and daemon crash) or... Moderate Unreviewed
CVE-2025-62672 was published Oct 19, 2025
Allocation of Resources Without Limits or Throttling vulnerability in The Wikimedia Foundation... Moderate Unreviewed
CVE-2025-62666 was published Oct 18, 2025
When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash... Moderate Unreviewed
CVE-2025-5683 was published Jun 5, 2025
An uncontrolled resource consumption vulnerability exists in the `upload-link` endpoint of... Moderate Unreviewed
CVE-2024-5208 was published Jun 19, 2024
When BIG-IP Advanced WAF is configured on a virtual server with Server-Side Request Forgery (SSRF... Moderate Unreviewed
CVE-2025-58474 was published Oct 15, 2025
An unauthanticated remote attacker can perform a DoS of the Modbus service by sending a specific... Moderate Unreviewed
CVE-2025-41704 was published Oct 14, 2025
IBM Aspera Faspex 5.0.0 through 5.0.13.1 could allow a privileged user to cause a denial of... Moderate Unreviewed
CVE-2025-36171 was published Oct 9, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8,... Moderate Unreviewed
CVE-2025-2934 was published Oct 9, 2025
In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform... Moderate Unreviewed
CVE-2025-20370 was published Oct 1, 2025
Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. An... Moderate Unreviewed
CVE-2024-45700 was published Apr 2, 2025
In the Linux kernel, the following vulnerability has been resolved: io_uring/tctx: work around... Moderate Unreviewed
CVE-2024-56584 was published Dec 27, 2024
If a user tries to login but the provided credentials are incorrect a log is created. The data... Moderate Unreviewed
CVE-2025-58582 was published Oct 6, 2025
Denial of service condition in M-Files Server in versions before 25.1.14445.5 allows an... Moderate Unreviewed
CVE-2025-0635 was published Jan 23, 2025
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to a denial of service, caused by... Moderate Unreviewed
CVE-2025-36099 was published Sep 29, 2025
Trend Micro ID Security, version 3.0 and below contains a vulnerability that could allow an... Moderate Unreviewed
CVE-2024-53647 was published Dec 31, 2024
In the Linux kernel, the following vulnerability has been resolved: Input: uinput - reject... Moderate Unreviewed
CVE-2024-46745 was published Sep 18, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 before 18.2.7,... Moderate Unreviewed
CVE-2025-11042 was published Sep 26, 2025
IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00... Moderate Unreviewed
CVE-2025-36035 was published Sep 14, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 7.8 before 18.1.6, 18.2... Moderate Unreviewed
CVE-2025-7337 was published Sep 12, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2... Moderate Unreviewed
CVE-2025-1250 was published Sep 12, 2025
IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a remote... Moderate Unreviewed
CVE-2024-45669 was published Sep 10, 2025
Rapid7 InsightVM Console versions below 6.6.260 suffer from a protection mechanism failure... Moderate Unreviewed
CVE-2024-6504 was published Jul 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database