Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

10,858 advisories

Loading
SMM Callout vulnerability within the AmdCpmDisplayFeatureSMM driver could allow locally... High Unreviewed
CVE-2024-0179 was published Feb 11, 2025
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21375 was published Feb 11, 2025
Windows Kerberos Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21350 was published Feb 11, 2025
Microsoft Surface Security Feature Bypass Vulnerability High Unreviewed
CVE-2025-21194 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input... Moderate Unreviewed
CVE-2025-21126 was published Feb 11, 2025
AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input... Moderate Unreviewed
CVE-2024-33659 was published Feb 11, 2025
A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3... High Unreviewed
CVE-2025-24499 was published Feb 11, 2025
A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected... Moderate Unreviewed
CVE-2025-1177 was published Feb 11, 2025
SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine High
CVE-2025-24970 was published for io.netty:netty-handler (Maven) Feb 10, 2025
johnou
A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-1113 was published Feb 8, 2025
A security vulnerability has been identified in the IBL Software Engineering Visual Weather and... Critical Unreviewed
CVE-2025-1077 was published Feb 7, 2025
Input verification vulnerability in the ExternalStorageProvider module Impact: Successful... High Unreviewed
CVE-2024-57960 was published Feb 6, 2025
Apache James vulnerable to denial of service through the use of IMAP literals High
CVE-2024-37358 was published for org.apache.james.protocols:protocols-imap (Maven) Feb 6, 2025
When BIG-IP Next Central Manager is running, undisclosed requests to the BIG-IP Next Central... High Unreviewed
CVE-2025-24319 was published Feb 5, 2025
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56135 was published Feb 5, 2025
A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation... Moderate Unreviewed
CVE-2025-20183 was published Feb 5, 2025
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed
CVE-2025-20184 was published Feb 5, 2025
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56132 was published Feb 5, 2025
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56131 was published Feb 5, 2025
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56133 was published Feb 5, 2025
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56134 was published Feb 5, 2025
Browsershot Path Traversal High
CVE-2025-1022 was published for spatie/browsershot (Composer) Feb 5, 2025
Browsershot Local File Inclusion Moderate
CVE-2025-1026 was published for spatie/browsershot (Composer) Feb 5, 2025
Memory corruption while configuring a Hypervisor based input virtual device. High Unreviewed
CVE-2024-38420 was published Feb 3, 2025
Memory corruption while processing frame packets. Moderate Unreviewed
CVE-2024-38413 was published Feb 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database