Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,994 advisories

Loading
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21263 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21258 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21229 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21228 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21226 was published Jan 14, 2025
Secure Boot Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21215 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21232 was published Jan 14, 2025
An out-of-bounds read in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... High Unreviewed
CVE-2024-13169 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21227 was published Jan 14, 2025
An out-of-bounds read vulnerability [CWE-125] in FortiOS SSLVPN web portal versions 7.4.0 through... Moderate Unreviewed
CVE-2024-36504 was published Jan 14, 2025
An Out-of-bounds Read vulnerability [CWE-125] in FortiOS version 7.6.0, version 7.4.4 and below,... High Unreviewed
CVE-2024-46670 was published Jan 14, 2025
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing... Moderate Unreviewed
CVE-2024-57822 was published Jan 10, 2025
An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing... High Unreviewed
CVE-2025-21598 was published Jan 9, 2025
An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-21600 was published Jan 9, 2025
An XML External Entity (XXE) injection vulnerability in Intersec Geosafe-ea 2022.12, 2022.13, and... Critical Unreviewed
CVE-2024-35532 was published Jan 7, 2025
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2024-45070 was published Jan 7, 2025
An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0... High Unreviewed
CVE-2024-48456 was published Jan 7, 2025
An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0... High Unreviewed
CVE-2024-48457 was published Jan 7, 2025
Information disclosure while invoking callback function of sound model driver from ADSP for every... Moderate Unreviewed
CVE-2024-33067 was published Jan 6, 2025
Information disclosure while processing IOCTL call made for releasing a trusted VM process... Moderate Unreviewed
CVE-2024-33061 was published Jan 6, 2025
information disclosure while invoking the mailbox read API. Moderate Unreviewed
CVE-2024-43063 was published Jan 6, 2025
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Moderate Unreviewed
CVE-2024-45559 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. High Unreviewed
CVE-2024-45546 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL... High Unreviewed
CVE-2024-45548 was published Jan 6, 2025
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database