Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,503
Maven
5,000+
npm
4,148
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via... High Unreviewed
CVE-2024-2955 was published Mar 26, 2024
An arbitrary free vulnerability exists in the cv_close functionality of Dell ControlVault3 prior... High Unreviewed
CVE-2025-25215 was published Jun 14, 2025
V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in... High Unreviewed
CVE-2025-47749 was published May 19, 2025
Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto,... High Unreviewed
CVE-2022-25662 was published Oct 19, 2022
Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2022-25661 was published Oct 19, 2022
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker... High Unreviewed
CVE-2025-30379 was published May 13, 2025
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that... High Unreviewed
CVE-2007-4367 was published May 1, 2022
In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect... High Unreviewed
CVE-2021-47087 was published Mar 4, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44852 was published Dec 7, 2024
In the Linux kernel, the following vulnerability has been resolved: bluetooth/hci: disallow... High Unreviewed
CVE-2024-42132 was published Jul 30, 2024
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09,... High Unreviewed
CVE-2024-25079 was published May 15, 2024
In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not... High Unreviewed
CVE-2022-48425 was published Mar 19, 2023
It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay... High Unreviewed
CVE-2024-6607 was published Jul 9, 2024
Memory corruption while reading ACPI config through the user mode app. High Unreviewed
CVE-2023-43532 was published Feb 6, 2024
In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine... High Unreviewed
CVE-2023-34312 was published Jun 1, 2023
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted... High Unreviewed
CVE-2022-26942 was published Oct 19, 2023
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an... High Unreviewed
CVE-2023-4883 was published Oct 3, 2023
An invalid free in mb_detect_order can cause the application to crash or potentially result in... High Unreviewed
CVE-2019-11930 was published May 24, 2022
Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can... High Unreviewed
CVE-2022-42309 was published Nov 1, 2022
Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language... High Unreviewed
CVE-2021-3939 was published May 24, 2022
There exists a use-after-free vulnerability in the Linux kernel through io_uring and the... High Unreviewed
CVE-2022-4696 was published Jan 11, 2023
crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local... High Unreviewed
CVE-2017-18075 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (mpeg4 encoder). Product:... High Unreviewed
CVE-2017-0731 was published May 13, 2022
In really_install_package of install.cpp, there is a possible free of arbitrary memory due to... High Unreviewed
CVE-2018-9557 was published May 13, 2022
An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows may allow... High Unreviewed
CVE-2020-12963 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database