Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

113 advisories

Loading
An unchecked return value in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy... Moderate Unreviewed
CVE-2025-55146 was published Sep 9, 2025
In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests can trigger a parser... High Unreviewed
CVE-2021-34585 was published May 24, 2022
Failure to handle the error status returned by the buffer management APIs in SiLabs EmberZNet... Moderate Unreviewed
CVE-2025-1394 was published Jul 30, 2025
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value,... High Unreviewed
CVE-2021-3998 was published Aug 25, 2022
A flaw was found in grub2 where the grub_extcmd_dispatcher() function calls grub_arg_list_alloc()... Moderate Unreviewed
CVE-2024-45775 was published Feb 18, 2025
In the Linux kernel, the following vulnerability has been resolved: binder: make sure fd closes... Moderate Unreviewed
CVE-2021-47360 was published May 21, 2024
Cryptographic issue in WLAN due to improper check on return value while authentication handshake... Critical Unreviewed
CVE-2022-25718 was published Oct 19, 2022
Unchecked return value in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2021-0155 was published May 13, 2022
Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed
CVE-2021-0107 was published Feb 11, 2022
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially... Low Unreviewed
CVE-2025-46672 was published Apr 27, 2025
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the... Moderate Unreviewed
CVE-2025-32414 was published Apr 8, 2025
dmcrypt-get-device, as shipped in the eject package of Debian and Ubuntu, does not check the... High Unreviewed
CVE-2017-6964 was published May 13, 2022
mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the... High Unreviewed
CVE-2007-5191 was published May 1, 2022
In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return... High Unreviewed
CVE-2023-23003 was published Mar 1, 2023
An attacker with low privileges can manipulate the requested memory size, causing the application... Moderate Unreviewed
CVE-2024-12650 was published Mar 5, 2025
On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over... High Unreviewed
CVE-2025-1933 was published Mar 4, 2025
list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return... Moderate Unreviewed
CVE-2025-25724 was published Mar 2, 2025
A flaw was found in the libssh implements abstract layer for message digest (MD) operations... Low Unreviewed
CVE-2023-6918 was published Dec 19, 2023
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... Low Unreviewed
CVE-2023-44322 was published Nov 14, 2023
Improper input validation in some Zoom Apps may allow an unauthenticated user to conduct a... High Unreviewed
CVE-2024-45419 was published Nov 19, 2024
ecrecover can return undefined data if signature does not verify Moderate
CVE-2023-37902 was published for vyper (pip) Jul 25, 2023
Unchecked return value can allow Apache Traffic Server to retain privileges on startup. This... Critical Unreviewed
CVE-2024-50306 was published Nov 14, 2024
In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: Fix... High Unreviewed
CVE-2024-39492 was published Jul 10, 2024
Undefined behavior in Tensorflow Moderate
CVE-2020-15191 was published for tensorflow (pip) Sep 25, 2020
Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote... Moderate Unreviewed
CVE-2007-3798 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database