Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,299 advisories

Loading
A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3.... Moderate Unreviewed
CVE-2025-3016 was published Mar 31, 2025
An uncontrolled format string issue was addressed with improved input validation. This issue is... Moderate Unreviewed
CVE-2025-24199 was published Apr 1, 2025
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the... Moderate Unreviewed
CVE-2025-29477 was published Apr 4, 2025
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the... Moderate Unreviewed
CVE-2025-29478 was published Apr 7, 2025
An issue has been identified where a specially crafted request sent to an Observability API could... Moderate Unreviewed
CVE-2024-52974 was published Apr 8, 2025
Elasticsearch Potential Node Crash due to Large Recursion in `innerForbidCircularReferences` Function Moderate
CVE-2024-52980 was published for org.elasticsearch:elasticsearch (Maven) Apr 8, 2025
AnonySE26
Elasticsearch Vulnerable to Stack Overflow due to a Large Recursion Moderate
CVE-2024-52981 was published for org.elasticsearch:elasticsearch (Maven) Apr 8, 2025
AnonySE26
A potential security vulnerability in HPE NonStop OSM Service Connection Suite could potentially... Moderate Unreviewed
CVE-2025-27081 was published Apr 10, 2025
Processing a file may lead to a denial-of-service or potentially disclose memory contents. This... Moderate Unreviewed
CVE-2023-42983 was published Apr 11, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21577 was published Apr 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported... Moderate Unreviewed
CVE-2025-21574 was published Apr 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported... Moderate Unreviewed
CVE-2025-21575 was published Apr 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Moderate Unreviewed
CVE-2025-30704 was published Apr 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported... Moderate Unreviewed
CVE-2025-30705 was published Apr 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Moderate Unreviewed
CVE-2025-30715 was published Apr 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-30725 was published Apr 15, 2025
A vulnerability in the kernel of the Cray Operating System (COS) could allow an attacker to... Moderate Unreviewed
CVE-2025-27087 was published Apr 23, 2025
GraphQL Armor Cost-Limit Plugin Bypass via Introspection Query Obfuscation Moderate
GHSA-733v-p3h5-qpq7 was published for @escape.tech/graphql-armor-cost-limit (npm) Apr 25, 2025
M0ngi EvertEt
A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow,... Moderate Unreviewed
CVE-2025-2811 was published Apr 26, 2025
A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This... Moderate Unreviewed
CVE-2025-3985 was published Apr 27, 2025
Apereo CAS has inefficient regular expression complexity Moderate
CVE-2025-3986 was published for org.apereo.cas:cas-server-core-configuration-metadata-repository (Maven) Apr 27, 2025
A vulnerability has been found in scipopt scip up to 9.2.1 and classified as problematic.... Moderate Unreviewed
CVE-2025-4001 was published Apr 28, 2025
net-imap rubygem vulnerable to possible DoS by memory exhaustion Moderate
CVE-2025-43857 was published for net-imap (RubyGems) Apr 28, 2025
Masamuneee nevans
The multiScan and picoScan are vulnerable to a denial-of-service (DoS) attack. A remote attacker... Moderate Unreviewed
CVE-2025-32472 was published Apr 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-31197 was published Apr 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database