Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,124
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,446 advisories

Loading
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Low Unreviewed
CVE-2024-47266 was published Feb 13, 2025
Certifi removes GLOBALTRUST root certificate Low
CVE-2024-39689 was published for certifi (pip) Jul 5, 2024
Kwpolska pcreager23
Improper restriction of communication channel to intended endpoints in some Intel(R) PROSet... Low Unreviewed
CVE-2024-39271 was published Feb 13, 2025
Incorrect execution-assigned permissions in the Linux kernel mode driver for the Intel(R) 800... Low Unreviewed
CVE-2024-39286 was published Feb 13, 2025
An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate... Low Unreviewed
CVE-2024-51324 was published Feb 12, 2025
A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability... Low Unreviewed
CVE-2025-1215 was published Feb 12, 2025
Unencrypted transmission in Temporal api-go library Low
CVE-2025-1243 was published for go.temporal.io/api (Go) Feb 12, 2025
A vulnerability was found in phjounin TFTPD64 4.64. It has been declared as problematic. This... Low Unreviewed
CVE-2025-1207 was published Feb 12, 2025
Vulnerable OpenSSL included in cryptography wheels Low
CVE-2024-12797 was published for cryptography (pip) Feb 11, 2025
Umbraco possible user enumeration Low
CVE-2024-28868 was published for UmbracoCMS (NuGet) Mar 20, 2024
poan21
HCL Connections Docs is vulnerable to a sensitive information disclosure which could allow a user... Low Unreviewed
CVE-2024-23563 was published Feb 12, 2025
Improper access control in the DRTM firmware could allow a privileged attacker to perform... Low Unreviewed
CVE-2023-31331 was published Feb 12, 2025
Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks,... Low Unreviewed
CVE-2023-20581 was published Feb 12, 2025
An integer overflow in the ASP could allow a privileged attacker to perform an out-of-bounds... Low Unreviewed
CVE-2023-20507 was published Feb 11, 2025
PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0907 was published Feb 11, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0908 was published Feb 11, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0911 was published Feb 11, 2025
PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0906 was published Feb 11, 2025
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0902 was published Feb 11, 2025
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0909 was published Feb 11, 2025
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0904 was published Feb 11, 2025
PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-0905 was published Feb 11, 2025
Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure... Low Unreviewed
CVE-2024-12550 was published Feb 11, 2025
Tungsten Automation Power PDF JP2 File Parsing Use-After-Free Information Disclosure... Low Unreviewed
CVE-2024-12548 was published Feb 11, 2025
Server-side Request Forgery (SSRF) in hackney Low
CVE-2025-1211 was published for hackney (Erlang) Feb 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database