Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

539 advisories

Loading
Insufficient parameter validation while allocating process space in the Trusted OS (TOS) may... Moderate Unreviewed
CVE-2021-26377 was published Sep 6, 2025
In lwis_test_register_io of lwis_device_test.c, there is a possible OOB Write due to an integer... Moderate Unreviewed
CVE-2025-36900 was published Sep 4, 2025
An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below,... Moderate Unreviewed
CVE-2025-25248 was published Aug 12, 2025
Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an... Moderate Unreviewed
CVE-2025-50166 was published Aug 12, 2025
EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by... Moderate Unreviewed
CVE-2024-38805 was published Aug 12, 2025
Vulnerability of insufficient data length verification in the partition module. Impact:... Moderate Unreviewed
CVE-2025-54631 was published Aug 6, 2025
An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through... Moderate Unreviewed
CVE-2025-7458 was published Jul 29, 2025
A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an... Moderate Unreviewed
CVE-2025-5449 was published Jul 25, 2025
CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c... Moderate Unreviewed
CVE-2025-48172 was published Jul 4, 2025
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent... Moderate Unreviewed
CVE-2025-50404 was published Jul 1, 2025
A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results... Moderate Unreviewed
CVE-2023-28908 was published Jun 28, 2025
A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file... Moderate Unreviewed
CVE-2025-6196 was published Jun 17, 2025
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does... Moderate Unreviewed
CVE-2025-49179 was published Jun 17, 2025
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not... Moderate Unreviewed
CVE-2025-49180 was published Jun 17, 2025
A flaw was found in the Big Requests extension. The request length is multiplied by 4 before... Moderate Unreviewed
CVE-2025-49176 was published Jun 17, 2025
A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug... Moderate Unreviewed
CVE-2025-6035 was published Jun 13, 2025
A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client... Moderate Unreviewed
CVE-2025-47712 was published Jun 9, 2025
A low privileged attacker can set the date of the devices to the 19th of January 2038 an... Moderate Unreviewed
CVE-2025-1235 was published Jun 2, 2025
A integer overflow or wraparound in Fortinet FortiOS versions 7.2.0 through 7.2.7, versions 7.0.0... Moderate Unreviewed
CVE-2025-47294 was published May 28, 2025
A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been... Moderate Unreviewed
CVE-2025-5001 was published May 21, 2025
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka... Moderate Unreviewed
CVE-2025-40907 was published May 16, 2025
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer... Moderate Unreviewed
CVE-2025-48174 was published May 16, 2025
In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications... Moderate Unreviewed
CVE-2025-48175 was published May 16, 2025
ping in iputils through 20240905 allows a denial of service (application error or incorrect data... Moderate Unreviewed
CVE-2025-47268 was published May 5, 2025
In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: Fix integer... Moderate Unreviewed
CVE-2022-49885 was published May 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database