Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,589 advisories

Loading
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-9329 was published Sep 2, 2025
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-9326 was published Sep 2, 2025
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-9328 was published Sep 2, 2025
The Bevy Event service through 2025-07-22, as used for eBay Seller Events and other activities,... High Unreviewed
CVE-2025-54599 was published Sep 2, 2025
There is an out of bounds write vulnerability due to improper bounds checking resulting in an... High Unreviewed
CVE-2025-57776 was published Sep 2, 2025
There is an out of bounds write vulnerability due to improper bounds checking resulting in... High Unreviewed
CVE-2025-57774 was published Sep 2, 2025
There is a deserialization of untrusted data vulnerability in Digilent DASYLab. This... High Unreviewed
CVE-2025-9188 was published Sep 2, 2025
There is a heap-based Buffer Overflow vulnerability due to improper bounds checking when parsing... High Unreviewed
CVE-2025-57775 was published Sep 2, 2025
There is an out of bounds write vulnerability due to improper bounds checking resulting in a... High Unreviewed
CVE-2025-9189 was published Sep 2, 2025
There is an out of bounds write vulnerability due to improper bounds checking in displ2.dll when... High Unreviewed
CVE-2025-57777 was published Sep 2, 2025
An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) Null pointer dereference... High Unreviewed
CVE-2025-57612 was published Sep 2, 2025
ATEN eco DC Missing Authorization Privilege Escalation Vulnerability. This vulnerability allows... High Unreviewed
CVE-2025-6685 was published Sep 2, 2025
There is an out of bounds write vulnerability due to improper bounds checking resulting in an... High Unreviewed
CVE-2025-57778 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8299 was published Sep 2, 2025
Anritsu ShockLine CHX File Parsing Deserialization of Untrusted Data Remote Code Execution... High Unreviewed
CVE-2025-7976 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8302 was published Sep 2, 2025
Realtek RTL8811AU rtwlanu.sys N6CSet_DOT11_CIPHER_DEFAULT_KEY Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8301 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8300 was published Sep 2, 2025
Vacron Camera ping Command Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-8613 was published Sep 2, 2025
Anritsu ShockLine CHX File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7975 was published Sep 2, 2025
Soft Serve vulnerable to arbitrary file writing through SSH API High
CVE-2025-58355 was published for github.com/charmbracelet/soft-serve (Go) Sep 2, 2025
msanft caarlos0
mcp-markdownify-server vulnerable to command injection in pptx-to-markdown tool High
CVE-2025-58358 was published for mcp-markdownify-server (npm) Sep 2, 2025
0xRoyR
Command Injection via sonarqube-scan-action GitHub Action High
CVE-2025-58178 was published for SonarSource/sonarqube-scan-action (GitHub Actions) Sep 2, 2025
Torbjorn-Svensson
arenavec has multiple memory corruption vulnerabilities in safe APIs High
GHSA-3632-54q8-m96x was published for arenavec (Rust) Sep 2, 2025
PocketMine-MP `ResourcePackDataInfoPacket` amplification vulnerability due to lack of resource pack sequence status checking High
GHSA-fqqv-56h5-f57g was published for pocketmine/pocketmine-mp (Composer) Sep 2, 2025
Zwuiix-cmd dktapps
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database