Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,890 advisories

Loading
A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this... Low Unreviewed
CVE-2025-5643 was published Jun 5, 2025
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected... Low Unreviewed
CVE-2025-5644 was published Jun 5, 2025
A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects... Low Unreviewed
CVE-2025-5645 was published Jun 5, 2025
A vulnerability in the web-based management interface of Cisco Unified CCX could allow an... Low Unreviewed
CVE-2025-20276 was published Jun 4, 2025
A vulnerability in the web-based management interface of Cisco Unified CCX could allow an... Low Unreviewed
CVE-2025-20277 was published Jun 4, 2025
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size ... Low Unreviewed
CVE-2025-49112 was published Jun 2, 2025
The TeleMessage service through 2025-05-05 stores certain cleartext information in memory, even... Low Unreviewed
CVE-2025-48930 was published May 28, 2025
The TeleMessage service through 2025-05-05 relies on MD5 for password hashing, which opens up... Low Unreviewed
CVE-2025-48931 was published May 28, 2025
A buffer over-read in Fortinet FortiOS versions 7.4.0 through 7.4.3, versions 7.2.0 through 7.2.7... Low Unreviewed
CVE-2025-47295 was published May 28, 2025
A insertion of sensitive information into log file in Fortinet FortiPortal versions 7.4.0,... Low Unreviewed
CVE-2025-46777 was published May 28, 2025
A exposure of sensitive system information to an unauthorized control sphere in Fortinet... Low Unreviewed
CVE-2025-24473 was published May 28, 2025
A missing authorization in Fortinet FortiManager versions 7.2.0 through 7.2.1, and versions 7.0.0... Low Unreviewed
CVE-2024-54020 was published May 28, 2025
n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC... Low Unreviewed
CVE-2025-2826 was published May 28, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Low Unreviewed
CVE-2025-2236 was published May 27, 2025
Gibbon before 29.0.00 allows CSRF. Low Unreviewed
CVE-2025-26211 was published May 27, 2025
A minor information leak when running Screen with setuid-root privileges allosw unprivileged... Low Unreviewed
CVE-2025-46804 was published May 26, 2025
In the anode crate 0.1.0 for Rust, data races can occur in unlock in SpinLock. Low Unreviewed
CVE-2025-48753 was published May 24, 2025
In the spiral-rs crate 0.2.0 for Rust, allocation can be attempted for a ZST (zero-sized type). Low Unreviewed
CVE-2025-48755 was published May 24, 2025
parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no... Low Unreviewed
CVE-2023-53154 was published May 23, 2025
A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7... Low Unreviewed
CVE-2024-9163 was published May 23, 2025
gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript through 10.05.0 lacks... Low Unreviewed
CVE-2025-48708 was published May 23, 2025
TagLib before 2.0 allows a segmentation violation and application crash during tag writing via a... Low Unreviewed
CVE-2023-47466 was published May 22, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 18.0 before 18.0.1. In... Low Unreviewed
CVE-2025-1110 was published May 22, 2025
Missing Authorization vulnerability in Drupal Single Content Sync allows Functionality Misuse... Low Unreviewed
CVE-2025-48009 was published May 21, 2025
Input provided in comment section of Konsola Proget is not sanitized correctly, allowing a high... Low Unreviewed
CVE-2025-1419 was published May 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database