Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,489
Maven
5,000+
npm
4,106
NuGet
735
pip
3,928
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
SAP NetWeaver Business Warehouse CCAW application allows a privileged attacker to cause a high... Low Unreviewed
CVE-2025-42954 was published Jul 8, 2025
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the... Moderate Unreviewed
CVE-2020-18442 was published May 24, 2022
ImageMagick has XMP profile write that triggers hang due to unbounded loop High
CVE-2025-53015 was published for Magick.NET-Q16-AnyCPU (NuGet) Jul 23, 2025
yosiimich root-Brainoverflow
jin-156 JungWooJJING I-mho T1deSEC P2GONE GAP-dev
Duplicate Advisory: Low severity (DoS) vulnerability in sequoia-openpgp Low
GHSA-g97w-mw7g-v3jv was published for sequoia-openpgp (Rust) Jul 27, 2025 withdrawn
Low severity (DoS) vulnerability in sequoia-openpgp Low
CVE-2024-58261 was published for sequoia-openpgp (Rust) Jun 26, 2024
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2024-20353 was published Apr 24, 2024
A flaw exists within the Linux kernel's handling of new TCP connections. The issue results from... Moderate Unreviewed
CVE-2023-2593 was published Jul 30, 2025
Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted... High Unreviewed
CVE-2025-5399 was published Jun 7, 2025
quiche connection ID retirement can trigger an infinite loop High
CVE-2025-7054 was published for quiche (Rust) Aug 7, 2025
catenacyber
There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry... High Unreviewed
CVE-2025-8194 was published Jul 28, 2025
A vulnerability in the IKEv2 feature of Cisco IOS Software, IOS XE Software, Secure Firewall ASA... High Unreviewed
CVE-2025-20253 was published Aug 14, 2025
A vulnerability in the packet inspection functionality of the Snort 3 Detection Engine of Cisco... High Unreviewed
CVE-2025-20217 was published Aug 14, 2025
A vulnerability in the management and VPN web servers of Cisco Secure Firewall ASA Software and... High Unreviewed
CVE-2025-20243 was published Aug 14, 2025
A vulnerability in the function that performs IPv4 and IPv6 Network Address Translation (NAT) DNS... High Unreviewed
CVE-2025-20136 was published Aug 14, 2025
An issue was discovered in the demo/LINUXTCP implementation of cwalter-at freemodbus v.2018-09-12... High Unreviewed
CVE-2025-51986 was published Aug 14, 2025
This vulnerability allows any attacker to cause the PeerTube server to stop responding to... High Unreviewed
CVE-2025-32947 was published Apr 15, 2025
jsPDF Denial of Service (DoS) High
CVE-2025-57810 was published for jspdf (npm) Aug 26, 2025
AlexRomberg
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database