Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,196
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,480
Pub
12
RubyGems
992
Rust
1,186
Swift
51
Unreviewed advisories
All unreviewed
5,000+

155 advisories

Loading
A vulnerability was determined in rxi fe up to ed4cda96bd582cbb08520964ba627efb40f3dd91. The... Low Unreviewed
CVE-2026-4012 was published Mar 12, 2026
Improper buffer restrictions in the UEFI DXE module for some Intel(R) Reference Platforms within... Low Unreviewed
CVE-2025-20073 was published Mar 11, 2026
aws-kms-tls-auth vulnerable to memory overallocation Low
GHSA-5whh-4q9j-7v28 was published for aws-kms-tls-auth (Rust) Mar 3, 2026
A vulnerability has been found in libvips 8.19.0. This issue affects the function... Low Unreviewed
CVE-2026-3283 was published Feb 27, 2026
A flaw has been found in libvips 8.19.0. This vulnerability affects the function... Low Unreviewed
CVE-2026-3282 was published Feb 27, 2026
A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the... Low Unreviewed
CVE-2026-3285 was published Feb 27, 2026
A vulnerability was determined in libvips up to 8.19.0. The affected element is the function... Low Unreviewed
CVE-2026-2913 was published Feb 22, 2026
A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info:... Low Unreviewed
CVE-2026-2656 was published Feb 18, 2026
A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function... Low Unreviewed
CVE-2026-2655 was published Feb 18, 2026
Open Chinese Convert has Out-of-bounds Write Low
CVE-2025-15536 was published for opencc (npm) Jan 18, 2026
Software installed and run as a non-privileged user may conduct improper GPU system calls to... Low Unreviewed
CVE-2025-58409 was published Jan 13, 2026
AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability Low
CVE-2025-15506 was published for opencolorio (pip) Jan 11, 2026
Soda PDF Desktop PDF File Parsing Memory Corruption Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14407 was published Dec 24, 2025
orx-pinned-vec has undefined behavior in index_of_ptr with empty slices Low
GHSA-h5j3-crg5-8jqm was published for orx-pinned-vec (Rust) Oct 21, 2025
A weakness has been identified in bftpd up to 6.2. Impacted is the function expand_groups of the... Low Unreviewed
CVE-2025-11947 was published Oct 20, 2025
wrflib has a soundness issue and is unmaintained Low
GHSA-466c-pfvv-v83g was published for wrflib (Rust) Oct 3, 2025
A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function... Low Unreviewed
CVE-2025-9019 was published Aug 15, 2025
A vulnerability was found in PX4 PX4-Autopilot up to 1.15.4. This issue affects the function... Low Unreviewed
CVE-2025-9020 was published Aug 15, 2025
Dell PowerEdge Platform version(s) 14G AMD BIOS v1.25.0 and prior, contain(s) an Access of Memory... Low Unreviewed
CVE-2025-36581 was published Aug 14, 2025
Improper buffer restrictions in the firmware for some Intel(R) TDX may allow a privileged user to... Low Unreviewed
CVE-2025-21096 was published Aug 12, 2025
sparklemotion nokogiri hashmap.c hashmap_get_with_hash heap-based overflow Low
CVE-2025-6494 was published for nokogiri (RubyGems) Jun 23, 2025 withdrawn
flavorjones Credited to flavorjones
sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow Low
CVE-2025-6490 was published for nokogiri (RubyGems) Jun 22, 2025 withdrawn
A vulnerability has been found in Radare2 5.9.9 and classified as problematic. This vulnerability... Low Unreviewed
CVE-2025-5646 was published Jun 5, 2025
A vulnerability was found in Radare2 5.9.9. It has been classified as problematic. Affected is... Low Unreviewed
CVE-2025-5648 was published Jun 5, 2025
A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the... Low Unreviewed
CVE-2025-5647 was published Jun 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database