Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

103,565 advisories

Loading
Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may... High Unreviewed
CVE-2024-29214 was published Feb 13, 2025
Improper buffer restrictions in the UEFI firmware for some Intel(R) Processors may allow a... High Unreviewed
CVE-2024-31155 was published Feb 13, 2025
Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may... High Unreviewed
CVE-2024-31858 was published Feb 13, 2025
Race condition in some Intel(R) System Security Report and System Resources Defense firmware may... High Unreviewed
CVE-2024-36262 was published Feb 13, 2025
Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter... High Unreviewed
CVE-2024-36274 was published Feb 13, 2025
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged... High Unreviewed
CVE-2023-34440 was published Feb 13, 2025
Improper input validation in UEFI firmware for some Intel(R) processors may allow a privileged... High Unreviewed
CVE-2023-43758 was published Feb 13, 2025
Race condition in some Intel(R) System Security Report and System Resources Defense firmware may... High Unreviewed
CVE-2023-49603 was published Feb 13, 2025
Improper buffer restrictions in some Intel(R) System Security Report and System Resources Defense... High Unreviewed
CVE-2023-49618 was published Feb 13, 2025
Improper input validation in some Intel(R) System Security Report and System Resources Defense... High Unreviewed
CVE-2023-49615 was published Feb 13, 2025
Improper buffer restrictions in some Intel(R) System Security Report and System Resources Defense... High Unreviewed
CVE-2023-48267 was published Feb 13, 2025
Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may... High Unreviewed
CVE-2024-24582 was published Feb 13, 2025
Heap-based buffer overflow in BMC Firmware for the Intel(R) Server Board S2600WF, Intel(R) Server... High Unreviewed
CVE-2023-31276 was published Feb 13, 2025
An improper privilege vulnerability was reported in a BIOS customization feature of Lenovo... High Unreviewed
CVE-2024-12673 was published Feb 12, 2025
A command injection vulnerability in the Palo Alto Networks PAN-OS OpenConfig plugin enables an... High Unreviewed
CVE-2025-0110 was published Feb 12, 2025
An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an... High Unreviewed
CVE-2025-0111 was published Feb 12, 2025
An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated... High Unreviewed
CVE-2025-0108 was published Feb 12, 2025
Nomad Community and Nomad Enterprise ("Nomad") event stream configured with a wildcard namespace... High Unreviewed
CVE-2025-0937 was published Feb 12, 2025
CrowdStrike uses industry-standard TLS (transport layer security) to secure communications from... High Unreviewed
CVE-2025-1146 was published Feb 12, 2025
parse-duration has a Regex Denial of Service that results in event loop delay and out of memory High
CVE-2025-25283 was published for parse-duration (npm) Feb 12, 2025
lirantal
go-crypto-winnative BCryptGenerateSymmetricKey memory leak High
CVE-2025-25199 was published for github.com/microsoft/go-crypto-winnative (Go) Feb 12, 2025
clarkb7
In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205),... High Unreviewed
CVE-2024-11343 was published Feb 12, 2025
In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205),... High Unreviewed
CVE-2024-11629 was published Feb 12, 2025
In Progress® Telerik® UI for WinForms, versions prior to 2025 Q1 (2025.1.211), using the improper... High Unreviewed
CVE-2025-0332 was published Feb 12, 2025
In Progress® Telerik® Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older... High Unreviewed
CVE-2025-0556 was published Feb 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database