Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,819
Erlang
36
GitHub Actions
32
Go
2,410
Maven
5,000+
npm
4,046
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,979 advisories

Loading
Memory corruption while triggering commands in the PlayReady Trusted application. High Unreviewed
CVE-2024-49844 was published May 6, 2025
Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump... High Unreviewed
CVE-2024-45577 was published May 6, 2025
Memory corruption during the FRS UDS generation process. High Unreviewed
CVE-2024-49845 was published May 6, 2025
Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver... High Unreviewed
CVE-2024-45579 was published May 6, 2025
Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the... High Unreviewed
CVE-2025-21460 was published May 6, 2025
Improper Input Validation vulnerability in Apache Kvrocks. The SETRANGE command didn't check if... High Unreviewed
CVE-2025-26413 was published Apr 22, 2025
A vulnerability has been identified in MS/TP Point Pickup Module (All versions). Affected devices... High Unreviewed
CVE-2025-24510 was published May 13, 2025
A vulnerability has been identified in BACnet ATEC 550-440 (All versions), BACnet ATEC 550-441 ... High Unreviewed
CVE-2025-40556 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15... High Unreviewed
CVE-2025-30442 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15... High Unreviewed
CVE-2025-31259 was published May 13, 2025
Improper input validation in Windows Common Log File System Driver allows an authorized attacker... High Unreviewed
CVE-2025-32706 was published May 13, 2025
An input validation issue was addressed by removing the vulnerable code. This issue is fixed in... High Unreviewed
CVE-2025-24274 was published May 13, 2025
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, macOS Sonoma... High Unreviewed
CVE-2025-31208 was published May 13, 2025
The issue was addressed with improved input validation. This issue is fixed in watchOS 11.5, tvOS... High Unreviewed
CVE-2025-31217 was published May 13, 2025
Improper input validation in the UEFI firmware DXE module for the Intel(R) Server D50DNP and... High Unreviewed
CVE-2025-21094 was published May 13, 2025
Improper input validation for some Intel(R) PROSet/Wireless WiFi Software for Windows before... High Unreviewed
CVE-2025-20032 was published May 13, 2025
Improper input validation in the UEFI firmware error handler for the Intel(R) Server D50DNP and... High Unreviewed
CVE-2025-24308 was published May 13, 2025
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS... High Unreviewed
CVE-2025-31240 was published May 13, 2025
The facial recognition module has a vulnerability in input validation.Successful exploitation of... High Unreviewed
CVE-2022-38985 was published Oct 14, 2022
Ericsson Packet Core Controller (PCC) contains a vulnerability where an attacker sending a large... High Unreviewed
CVE-2024-53827 was published May 16, 2025
A Path traversal vulnerability in the file download functionality was identified. This... High Unreviewed
CVE-2025-2305 was published May 16, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before... High Unreviewed
CVE-2024-52880 was published May 15, 2025
Spring Boot EndpointRequest.to() creates wrong matcher if actuator endpoint is not exposed High
CVE-2025-22235 was published for org.springframework.boot:spring-boot (Maven) Apr 28, 2025
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to... High Unreviewed
CVE-2019-0709 was published May 24, 2022
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to... High Unreviewed
CVE-2019-0722 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database