Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
50
GitHub Actions
50
Go
3,706
Maven
5,000+
npm
5,000+
NuGet
934
pip
4,936
Pub
13
RubyGems
1,053
Rust
1,332
Swift
53
Unreviewed advisories
All unreviewed
5,000+

185 advisories

Loading
Netmaker Vulnerable to Denial of Service via Server Shutdown Endpoint High
CVE-2026-29771 was published for github.com/gravitl/netmaker (Go) Mar 4, 2026
m4dn355 Credited to m4dn355
Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ... High Unreviewed
CVE-2026-1876 was published Mar 3, 2026
Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ... High Unreviewed
CVE-2026-1875 was published Mar 3, 2026
An issue in Beat XP VEGA Smartwatch (Firmware Version - RB303ATV006229) allows an attacker to... High Unreviewed
CVE-2025-69821 was published Jan 22, 2026
An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0... High Unreviewed
CVE-2025-63895 was published Dec 10, 2025
Jenkins has a Denial of service vulnerability in HTTP-based CLI High
CVE-2025-67635 was published for org.jenkins-ci.main:cli (Maven) Dec 10, 2025
caverav Credited to caverav
When the BIG-IP system is configured as both a Security Assertion Markup Language (SAML) service... High Unreviewed
CVE-2025-47148 was published Oct 15, 2025
A vulnerability was found in Tenda W12 3.0.0.6(3948). The impacted element is the function... High Unreviewed
CVE-2025-11550 was published Oct 9, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2... High Unreviewed
CVE-2025-58473 was published Sep 24, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2... High Unreviewed
CVE-2025-57882 was published Sep 24, 2025
Vulnerability in SK Hynix DDR5 on x86 allows a local attacker to trigger Rowhammer bit flips... High Unreviewed
CVE-2025-6202 was published Sep 15, 2025
Undertow MadeYouReset HTTP/2 DDoS Vulnerability High
CVE-2025-9784 was published for io.undertow:undertow-core (Maven) Sep 2, 2025
fawind Credited to fawind
A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall... High Unreviewed
CVE-2025-20127 was published Aug 14, 2025
Apache Tomcat Improper Resource Shutdown or Release vulnerability High
CVE-2025-48989 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Aug 13, 2025
snieguu Credited to snieguu
A vulnerability has been found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This vulnerability affects... High Unreviewed
CVE-2025-8761 was published Aug 13, 2025
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic.... High Unreviewed
CVE-2025-8175 was published Jul 26, 2025
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN... High Unreviewed
CVE-2025-38385 was published Jul 25, 2025
An Improper Resource Shutdown or Release vulnerability in the SIP ALG of Juniper Networks Junos... High Unreviewed
CVE-2025-52982 was published Jul 11, 2025
A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects... High Unreviewed
CVE-2025-5867 was published Jun 9, 2025
A vulnerability, which was classified as problematic, was found in H3C R2+ProG up to 200R004.... High Unreviewed
CVE-2025-4997 was published May 20, 2025
A vulnerability has been found in H3C Magic R200G up to 100R002 and classified as problematic.... High Unreviewed
CVE-2025-4998 was published May 20, 2025
A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as problematic. Affected... High Unreviewed
CVE-2025-4867 was published May 18, 2025
A vulnerability classified as critical was found in D-Link DI-7003GV2 24.04.18D1 R(68125). This... High Unreviewed
CVE-2025-4749 was published May 16, 2025
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS... High Unreviewed
CVE-2025-31237 was published May 13, 2025
**UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request High
CVE-2024-13009 was published for org.eclipse.jetty:jetty-server (Maven) May 8, 2025
maimaisie Credited to maimaisie, samjsong, nchudasmasumo, and lei-sumo samjsong samjsong
nchudasmasumo nchudasmasumo lei-sumo lei-sumo
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database