Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,396 advisories

Loading
Out-of-bounds Read vulnerability (CWE-125) was found in CX-Programmer. Attackers may be able to... High Unreviewed
CVE-2025-0591 was published Feb 17, 2025
PDF-XChange Editor Doc Object Out-Of-Bounds Read Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-0901 was published Feb 11, 2025
Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution... High Unreviewed
CVE-2024-12551 was published Feb 11, 2025
Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution... High Unreviewed
CVE-2024-12549 was published Feb 11, 2025
Microsoft Excel Information Disclosure Vulnerability High Unreviewed
CVE-2025-21383 was published Feb 11, 2025
In the Linux kernel, the following vulnerability has been resolved: vfio/platform: check the... High Unreviewed
CVE-2025-21687 was published Feb 10, 2025
When URL categorization is configured on a virtual server, undisclosed requests can cause TMM to... High Unreviewed
CVE-2025-24497 was published Feb 5, 2025
Information disclosure while parsing the OCI IE with invalid length. High Unreviewed
CVE-2024-49838 was published Feb 3, 2025
Memory corruption during management frame processing due to mismatch in T2LM info element. High Unreviewed
CVE-2024-49839 was published Feb 3, 2025
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in... High Unreviewed
CVE-2024-38404 was published Feb 3, 2025
Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote... High Unreviewed
CVE-2025-0612 was published Jan 22, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24417 was published Jan 22, 2025
In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files... High Unreviewed
CVE-2018-9461 was published Jan 18, 2025
In multiple locations, there is a possible way to read protected files due to a missing... High Unreviewed
CVE-2018-9464 was published Jan 18, 2025
In multiple functions of mnh-sm.c, there is a possible way to trigger a heap overflow due to an... High Unreviewed
CVE-2018-9387 was published Jan 18, 2025
Out of bounds read in Metrics in Google Chrome prior to 132.0.6834.83 allowed a remote attacker... High Unreviewed
CVE-2025-0437 was published Jan 15, 2025
An out-of-bounds read in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... High Unreviewed
CVE-2024-13169 was published Jan 14, 2025
An Out-of-bounds Read vulnerability [CWE-125] in FortiOS version 7.6.0, version 7.4.4 and below,... High Unreviewed
CVE-2024-46670 was published Jan 14, 2025
An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing... High Unreviewed
CVE-2025-21598 was published Jan 9, 2025
An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-21600 was published Jan 9, 2025
An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0... High Unreviewed
CVE-2024-48456 was published Jan 7, 2025
An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0... High Unreviewed
CVE-2024-48457 was published Jan 7, 2025
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. High Unreviewed
CVE-2024-45546 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL... High Unreviewed
CVE-2024-45548 was published Jan 6, 2025
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database