Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

86 advisories

Loading
ImageMagick BlobStream Forward-Seek Under-Allocation Low
CVE-2025-57807 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Sep 5, 2025
mescuwa
Bouncy Castle for Java has Out-of-Bounds Write Vulnerability Low
CVE-2025-9340 was published for org.bouncycastle:bc-fips (Maven) Aug 22, 2025
A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function... Low Unreviewed
CVE-2025-9019 was published Aug 15, 2025
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one'... Low Unreviewed
CVE-2025-5917 was published Jun 9, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-27132 was published May 6, 2025
Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.0.0, contains an out-of-bounds write... Low Unreviewed
CVE-2025-26479 was published Apr 10, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2025-24304 was published Apr 7, 2025
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid VerticesPerRow value... Low Unreviewed
CVE-2025-3154 was published Apr 3, 2025
A vulnerability was found in WebAssembly wabt 1.0.36. It has been declared as critical. This... Low Unreviewed
CVE-2025-2584 was published Mar 21, 2025
Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in... Low Unreviewed
CVE-2025-2574 was published Mar 20, 2025
A vulnerability, which was classified as critical, was found in HDF5 1.14.6. Affected is the... Low Unreviewed
CVE-2025-2153 was published Mar 10, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53697 was published Mar 7, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53699 was published Mar 7, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-38638 was published Mar 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-23420 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-24309 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-23240 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-22835 was published Mar 4, 2025
AugAssign evaluation order causing OOB write within the object in Vyper Low
CVE-2025-27105 was published for vyper (pip) Feb 21, 2025
Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer... Low Unreviewed
CVE-2024-53296 was published Feb 1, 2025
Out-of-bounds write in some Zoom Workplace Apps may allow an authorized user to conduct a loss of... Low Unreviewed
CVE-2025-0144 was published Jan 30, 2025
A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2... Low Unreviewed
CVE-2024-52963 was published Jan 14, 2025
Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to... Low Unreviewed
CVE-2024-34776 was published Nov 13, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2024-45382 was published Oct 8, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted... Low Unreviewed
CVE-2024-8443 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database