Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
41
GitHub Actions
42
Go
3,114
Maven
5,000+
npm
5,000+
NuGet
826
pip
4,428
Pub
12
RubyGems
988
Rust
1,171
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

292,559 advisories

Loading
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-61614 was published Mar 9, 2026
A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from... Unknown Unreviewed
CVE-2026-24015 was published Mar 9, 2026
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-69278 was published Mar 9, 2026
A vulnerability was found in Tenda FH1202 1.2.0.14(408). This impacts the function... High Unreviewed
CVE-2026-3811 was published Mar 9, 2026
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-61615 was published Mar 9, 2026
Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1... Unknown Unreviewed
CVE-2026-24713 was published Mar 9, 2026
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-69279 was published Mar 9, 2026
A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an... Moderate Unreviewed
CVE-2026-3812 was published Mar 9, 2026
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-61616 was published Mar 9, 2026
An unauthenticated attacker can abuse the weak hash of the backup generated by the wwwdnload.cgi... Moderate Unreviewed
CVE-2025-41762 was published Mar 9, 2026
In nr modem, there is a possible system crash due to improper input validation. This could lead... High Unreviewed
CVE-2025-61612 was published Mar 9, 2026
In modem, there is a possible improper input validation. This could lead to remote denial of... High Unreviewed
CVE-2025-61611 was published Mar 9, 2026
A vulnerability has been found in Tenda FH1202 1.2.0.14(408). This affects the function... High Unreviewed
CVE-2026-3810 was published Mar 9, 2026
A vulnerability was detected in Tenda FH1202 1.2.0.14(408). The affected element is the function... High Unreviewed
CVE-2026-3808 was published Mar 9, 2026
A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an... Moderate Unreviewed
CVE-2025-41754 was published Mar 9, 2026
A low-privileged remote attacker can abuse the backup restore functionality of UBR (ubr-restore)... High Unreviewed
CVE-2025-41757 was published Mar 9, 2026
Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the... Critical Unreviewed
CVE-2025-41764 was published Mar 9, 2026
Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the... Critical Unreviewed
CVE-2025-41765 was published Mar 9, 2026
A flaw has been found in Tenda FH1202 1.2.0.14(408). The impacted element is the function... High Unreviewed
CVE-2026-3809 was published Mar 9, 2026
An administrator may attempt to block all networks by specifying "\*" or "all" as the network... Moderate Unreviewed
CVE-2025-41759 was published Mar 9, 2026
A low-privileged remote attacker can exploit an arbitrary file write vulnerability in the... High Unreviewed
CVE-2025-41758 was published Mar 9, 2026
An unauthenticated remote attacker can obtain valid session tokens because they are exposed in... High Unreviewed
CVE-2025-41772 was published Mar 9, 2026
A low‑privileged local attacker who gains access to the UBR service account (e.g., via SSH) can... High Unreviewed
CVE-2025-41761 was published Mar 9, 2026
An administrator may attempt to block all traffic by configuring a pass filter with an empty... Moderate Unreviewed
CVE-2025-41760 was published Mar 9, 2026
A high-privileged remote attacker can fully compromise the device by abusing an update signature... High Unreviewed
CVE-2025-41767 was published Mar 9, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database