GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,933
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,343
Maven 5,665
npm 3,973
NuGet 719
pip 3,770
Pub 12
RubyGems 923
Rust 978
Swift 38

Unreviewed advisories

All unreviewed 260,021

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

66 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... High Unreviewed

CVE-2025-20271 was published Jun 18, 2025

The iSTAR Configuration Utility (ICU) tool leaks memory, which could result in the unintended... Moderate Unreviewed

CVE-2025-26383 was published Jun 11, 2025

WOLFBOX Level 2 EV Charger BLE Encryption Keys Uninitialized Variable Authentication Bypass... Moderate Unreviewed

CVE-2025-5749 was published Jun 6, 2025

PDF-XChange Editor PDF File Parsing Uninitialized Variable Information Disclosure Vulnerability.... Low Unreviewed

CVE-2023-39484 was published May 3, 2024

PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability.... Low Unreviewed

CVE-2023-42079 was published May 3, 2024

PDF-XChange Editor U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability.... High Unreviewed

CVE-2023-42062 was published May 3, 2024

PDF-XChange Editor U3D File Parsing Uninitialized Variable Information Disclosure Vulnerability.... Low Unreviewed

CVE-2023-42056 was published May 3, 2024

PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability.... Low Unreviewed

CVE-2023-42046 was published May 3, 2024

PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability.... Low Unreviewed

CVE-2023-42048 was published May 3, 2024

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... Moderate Unreviewed

CVE-2025-40575 was published May 13, 2025

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed

CVE-2025-1427 was published Mar 13, 2025

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed

CVE-2025-1650 was published Mar 13, 2025

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed

CVE-2025-1649 was published Mar 13, 2025

A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk... High Unreviewed

CVE-2024-23159 was published Jun 25, 2024

HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c. Critical Unreviewed

CVE-2024-32611 was published May 14, 2024

A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can... High Unreviewed

CVE-2024-23137 was published Feb 22, 2024

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an... High Unreviewed

CVE-2025-2285 was published Apr 8, 2025

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an... High Unreviewed

CVE-2025-2286 was published Apr 8, 2025

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an... High Unreviewed

CVE-2025-2287 was published Apr 8, 2025

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... High Unreviewed

CVE-2025-20212 was published Apr 2, 2025

Ashlar-Vellum Cobalt VS File Parsing Use of Uninitialized Variable Remote Code Execution... High Unreviewed

CVE-2025-2014 was published Mar 11, 2025

Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-2024 was published Mar 7, 2025

ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an... High Unreviewed

CVE-2023-6324 was published May 15, 2024

In DA, there is a possible read of uninitialized heap data due to uninitialized data. This could... Moderate Unreviewed

CVE-2025-20638 was published Feb 3, 2025

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,... High Unreviewed

CVE-2024-37002 was published Jun 25, 2024

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

66 advisories