Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,229 advisories

Loading
A vulnerability has been identified in BACnet ATEC 550-440 (All versions), BACnet ATEC 550-441 ... High Unreviewed
CVE-2025-40556 was published May 13, 2025
A vulnerability has been identified in MS/TP Point Pickup Module (All versions). Affected devices... High Unreviewed
CVE-2025-24510 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15... High Unreviewed
CVE-2025-31259 was published May 13, 2025
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS... High Unreviewed
CVE-2025-31240 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in watchOS 11.5,... Moderate Unreviewed
CVE-2025-31233 was published May 13, 2025
The issue was addressed with improved input validation. This issue is fixed in watchOS 11.5, tvOS... High Unreviewed
CVE-2025-31217 was published May 13, 2025
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5,... Moderate Unreviewed
CVE-2025-31215 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15... High Unreviewed
CVE-2025-30442 was published May 13, 2025
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, macOS Sonoma... High Unreviewed
CVE-2025-31208 was published May 13, 2025
An input validation issue was addressed by removing the vulnerable code. This issue is fixed in... High Unreviewed
CVE-2025-24274 was published May 13, 2025
Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that... Critical Unreviewed
CVE-2025-1087 was published May 9, 2025
Improper Input Validation vulnerability in Sparx Systems Pro Cloud Server's WebEA model search... Moderate Unreviewed
CVE-2025-4376 was published May 9, 2025
Improper Limitation of a Pathname caused a Path Traversal vulnerability in Sparx Systems Pro... High Unreviewed
CVE-2025-4377 was published May 9, 2025
fast_id_map has a soundness issue and is unmaintained Moderate
GHSA-4h96-mv53-2c86 was published for fast_id_map (Rust) May 8, 2025
Improper Input Validation, the returnUrl parameter in Account Security Settings lacks proper... High Unreviewed
CVE-2025-40846 was published May 8, 2025
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker... Moderate Unreviewed
CVE-2025-20197 was published May 7, 2025
A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS... High Unreviewed
CVE-2025-20154 was published May 7, 2025
Easy!Appointments Denial of Service (DoS) Moderate
CVE-2025-29448 was published for alextselegidis/easyappointments (Composer) May 7, 2025
Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the... High Unreviewed
CVE-2025-21460 was published May 6, 2025
Memory corruption while triggering commands in the PlayReady Trusted application. High Unreviewed
CVE-2024-49844 was published May 6, 2025
Memory corruption during the FRS UDS generation process. High Unreviewed
CVE-2024-49845 was published May 6, 2025
Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver... High Unreviewed
CVE-2024-45579 was published May 6, 2025
Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump... High Unreviewed
CVE-2024-45577 was published May 6, 2025
A vulnerability was found in zhangyanbo2007 youkefu up to 4.2.0 and classified as problematic.... Moderate Unreviewed
CVE-2025-4260 was published May 5, 2025
IBM Db2 for Linux, UNIX and Windows 12.1.0 and 12.1.1 is vulnerable to a denial of service as the... Moderate Unreviewed
CVE-2024-52903 was published May 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database