GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,795

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,404 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2025-5473 was published Jun 6, 2025

A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client... Moderate Unreviewed

CVE-2025-47712 was published Jun 9, 2025

A vulnerability has been identified in the libarchive library. This flaw involves an integer... Low Unreviewed

CVE-2025-5916 was published Jun 9, 2025

InCopy versions 20.2, 19.5.3 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed

CVE-2025-30327 was published Jun 10, 2025

An integer overflow was present in `OrderedHashTable` used by the JavaScript engine This... Critical Unreviewed

CVE-2025-49710 was published Jun 11, 2025

A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is... Low Unreviewed

CVE-2025-6052 was published Jun 13, 2025

A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug... Moderate Unreviewed

CVE-2025-6035 was published Jun 13, 2025

A flaw was found in the Big Requests extension. The request length is multiplied by 4 before... Moderate Unreviewed

CVE-2025-49176 was published Jun 17, 2025

A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not... Moderate Unreviewed

CVE-2025-49180 was published Jun 17, 2025

A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does... Moderate Unreviewed

CVE-2025-49179 was published Jun 17, 2025

A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file... Moderate Unreviewed

CVE-2025-6196 was published Jun 17, 2025

Integer overflow in V8 in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to... High Unreviewed

CVE-2025-6191 was published Jun 18, 2025

Sony XAV-AX8500 Bluetooth Packet Handling Integer Overflow Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-5475 was published Jun 23, 2025

Sony XAV-AX8500 Bluetooth SDP Protocol Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-5478 was published Jun 23, 2025

Integer Overflow or Wraparound vulnerability in dragonflydb dragonfly (src/redis/lua/struct... Critical Unreviewed

CVE-2025-52935 was published Jun 23, 2025

A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results... Moderate Unreviewed

CVE-2023-28908 was published Jun 28, 2025

A specific flaw exists within the Bluetooth stack of the MIB3 unit. The issue results from the... High Unreviewed

CVE-2023-28909 was published Jun 28, 2025

An integer overflow in the image processing binary of the MIB3 infotainment unit allows an... Low Unreviewed

CVE-2023-28903 was published Jun 28, 2025

Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent... Moderate Unreviewed

CVE-2025-50404 was published Jul 1, 2025

CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c... Moderate Unreviewed

CVE-2025-48172 was published Jul 4, 2025

Cosmos SDK's Integer Overflow vulnerability in its Validator Rewards pool can cause a chain halt High

GHSA-p22h-3m2v-cmgh was published for github.com/cosmos/cosmos-sdk (Go) Jul 8, 2025

Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed

CVE-2025-49531 was published Jul 9, 2025

Apache Tomcat Catalina is vulnerable to DoS attack through bypassing of size limits Moderate

CVE-2025-52520 was published for org.apache.tomcat:tomcat-catalina (Maven) Jul 10, 2025

A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an... Moderate Unreviewed

CVE-2025-5449 was published Jul 25, 2025

Duplicate Advisory: CosmWasm affected by arithmetic overflows Low

GHSA-rm83-pxjx-pr5j was published for cosmwasm-std (Rust) Jul 27, 2025 • withdrawn

Previous 1…95…97 Next

Previous 1 2 … 93 94 95 96 97 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,404 advisories