Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

293,354 advisories

Loading
Improper link resolution before file access ('link following') in Windows Update Service allows... High Unreviewed
CVE-2025-48799 was published Jul 8, 2025
A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML... Critical Unreviewed
CVE-2025-49796 was published Jun 16, 2025
A vulnerability has been identified in the libarchive library, specifically within the... Low Unreviewed
CVE-2025-5914 was published Jun 9, 2025
A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath... Critical Unreviewed
CVE-2025-49794 was published Jun 16, 2025
Windows Themes Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38030 was published Jul 9, 2024
Windows Themes Spoofing Vulnerability Moderate Unreviewed
CVE-2024-21320 was published Jan 9, 2024
FUSE-Rust: Uninitalized memory read and leak caused by fuser crate High
GHSA-cvmj-47v9-35m9 was published for fuser (Rust) Sep 15, 2025
Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults High
CVE-2025-54588 was published for github.com/envoyproxy/envoy (Go) Sep 15, 2025
agrawroh yanavlasov
phlax botengyao
Before action, Ash's hooks may execute in certain scenarios despite a request being forbidden High
CVE-2025-48042 was published for ash (Erlang) Sep 15, 2025
zachdaniel maennchen
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further... Critical Unreviewed
CVE-2022-2068 was published Jun 22, 2022
A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the... Moderate Unreviewed
CVE-2025-8844 was published Aug 11, 2025
Totolink A3300R V17.0.0cu.596_B20250515 was found to contain a command injection vulnerability in... Critical Unreviewed
CVE-2025-52046 was published Jul 17, 2025
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function... Moderate Unreviewed
CVE-2025-8846 was published Aug 11, 2025
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the... Moderate Unreviewed
CVE-2025-8842 was published Aug 11, 2025
gpac v2.2.1 was discovered to contain a memory leak via the gfio_blob variable in the... High Unreviewed
CVE-2024-24267 was published Feb 5, 2024
In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak... Unknown Unreviewed
CVE-2023-53261 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix... Unknown Unreviewed
CVE-2023-53237 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: ubifs: dirty_cow_znode: Fix... Unknown Unreviewed
CVE-2023-53227 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs:... Unknown Unreviewed
CVE-2023-53247 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield:... Unknown Unreviewed
CVE-2023-53253 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer... Unknown Unreviewed
CVE-2023-53260 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix scheduling while... Unknown Unreviewed
CVE-2023-53262 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix FFA... Unknown Unreviewed
CVE-2023-53256 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: Add missing... Unknown Unreviewed
CVE-2023-53223 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Add check for... Unknown Unreviewed
CVE-2023-53239 was published Sep 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database