Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,886 advisories

Loading
Uncontrolled resource consumption in Windows Print Spooler Components allows an authorized... Moderate Unreviewed
CVE-2025-49722 was published Jul 8, 2025
Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny... Moderate Unreviewed
CVE-2025-49716 was published Jul 8, 2025
MongoDB Server may be susceptible to disruption caused by high memory usage, potentially leading... Moderate Unreviewed
CVE-2025-6712 was published Jul 7, 2025
MongoDB Server's mongos component can become unresponsive to new connections due to incorrect... High Unreviewed
CVE-2025-6714 was published Jul 7, 2025
A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This... Moderate Unreviewed
CVE-2025-7074 was published Jul 5, 2025
A vulnerability has been found in IROAD Dashcam Q9 up to 20250624 and classified as problematic.... Moderate Unreviewed
CVE-2025-7070 was published Jul 5, 2025
Uncontrolled Resource Consumption vulnerability in Wikimedia Foundation Mediawiki - IPInfo... High Unreviewed
CVE-2025-53481 was published Jul 4, 2025
n8n Vulnerable to Denial of Service via Malformed Binary Data Requests Moderate
CVE-2025-49595 was published for n8n (npm) Jul 3, 2025
pfelilpe LucianoSorrentino95
agustedone ivov ffaggiani
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting... High Unreviewed
CVE-2025-6297 was published Jul 1, 2025
A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue... Moderate Unreviewed
CVE-2025-6817 was published Jun 28, 2025
An issue in the Bluetooth Low Energy (BLE) stack of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed
CVE-2025-44559 was published Jun 27, 2025
An issue in Realtek RTL8762EKF-EVB RTL8762E SDK v1.4.0 allows attackers to cause a Denial of... High Unreviewed
CVE-2025-44531 was published Jun 24, 2025
A vulnerability was found in CodeMirror up to 5.17.0 and classified as problematic. Affected by... Moderate Unreviewed
CVE-2025-6493 was published Jun 23, 2025
A vulnerability has been found in MarkText up to 0.17.1 and classified as problematic. Affected... Moderate Unreviewed
CVE-2025-6492 was published Jun 22, 2025
A vulnerability was found in HobbesOSR Kitten up to c4f8b7c3158983d1020af432be1b417b28686736 and... Moderate Unreviewed
CVE-2025-6365 was published Jun 20, 2025
A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been classified as problematic... Moderate Unreviewed
CVE-2025-6274 was published Jun 19, 2025
ESI plugin does not have the limit for maximum inclusion depth, and that allows excessive memory... High Unreviewed
CVE-2025-49763 was published Jun 19, 2025
A vulnerability, which was classified as problematic, was found in spdlog up to 1.15.1. This... Moderate Unreviewed
CVE-2025-6140 was published Jun 17, 2025
Liferay Portal SessionClicks does not restrict the saving of request parameters in the HTTP session High
CVE-2025-3526 was published for com.liferay.portal:com.liferay.portal.kernel (Maven) Jun 16, 2025
Liferay Portal does not limit the depth of a GraphQL queries High
CVE-2025-3602 was published for com.liferay:com.liferay.portal.vulcan.impl (Maven) Jun 16, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-33068 was published Jun 10, 2025
Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS)... High Unreviewed
CVE-2025-32724 was published Jun 10, 2025
CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause Denial of... High Unreviewed
CVE-2025-3112 was published Jun 10, 2025
@vue/cli-plugin-pwa Regular Expression Denial of Service vulnerability Moderate
CVE-2025-5897 was published for @vue/cli-plugin-pwa (npm) Jun 9, 2025
taro-css-to-react-native Regular Expression Denial of Service vulnerability Moderate
CVE-2025-5896 was published for taro-css-to-react-native (npm) Jun 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database