Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,982 advisories

Loading
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4,... Critical Unreviewed
CVE-2025-24118 was published Jan 28, 2025
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser... Critical Unreviewed
CVE-2024-12649 was published Jan 28, 2025
Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser... Critical Unreviewed
CVE-2024-12648 was published Jan 28, 2025
Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser... Critical Unreviewed
CVE-2024-12647 was published Jan 28, 2025
The affected product is vulnerable to an out-of-bounds write, which could allow an attacker to... Critical Unreviewed
CVE-2024-12248 was published Jan 30, 2025
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead... Critical Unreviewed
CVE-2025-20634 was published Feb 3, 2025
Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence... Critical Unreviewed
CVE-2025-1020 was published Feb 4, 2025
Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird... Critical Unreviewed
CVE-2025-1017 was published Feb 4, 2025
Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6... Critical Unreviewed
CVE-2025-1016 was published Feb 4, 2025
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability... Critical Unreviewed
CVE-2025-25744 was published Feb 12, 2025
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability... Critical Unreviewed
CVE-2025-25742 was published Feb 12, 2025
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability... Critical Unreviewed
CVE-2025-25746 was published Feb 12, 2025
A vulnerability was found in Tenda AC8V4 V16.03.34.06. Affected is the function SUB_0046AC38 of... Critical Unreviewed
CVE-2025-25663 was published Feb 21, 2025
Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter... Critical Unreviewed
CVE-2025-25664 was published Feb 21, 2025
Out-of-bounds Write vulnerability in radareorg radare2 allows heap-based buffer over-read or... Critical Unreviewed
CVE-2025-1744 was published Feb 28, 2025
In wlan AP FW, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed
CVE-2025-20646 was published Mar 3, 2025
During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is... Critical Unreviewed
CVE-2025-2263 was published Mar 13, 2025
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function. Critical Unreviewed
CVE-2025-29029 was published Mar 14, 2025
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function. Critical Unreviewed
CVE-2025-29030 was published Mar 14, 2025
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the fromAddressNat function. Critical Unreviewed
CVE-2025-29031 was published Mar 14, 2025
In Tenda AC9 v1.0 V15.03.05.14_multi, the cloneType parameter of /goform/AdvSetMacMtuWan has a... Critical Unreviewed
CVE-2025-29385 was published Mar 14, 2025
In Tenda AC9 v1.0 V15.03.05.14_multi, the wanMTU parameter of /goform/AdvSetMacMtuWan has a stack... Critical Unreviewed
CVE-2025-29384 was published Mar 14, 2025
In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack... Critical Unreviewed
CVE-2025-29386 was published Mar 14, 2025
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a... Critical Unreviewed
CVE-2025-30472 was published Mar 22, 2025
A vulnerability, which was classified as critical, has been found in D-Link DAP-1620 1.03.... Critical Unreviewed
CVE-2025-2618 was published Mar 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database