Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,098
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,770 advisories

Loading
This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.3... Moderate Unreviewed
CVE-2025-24092 was published Jan 28, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24115 was published Jan 28, 2025
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30039 was published May 14, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2024-54478 was published Jan 28, 2025
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2,... Moderate Unreviewed
CVE-2024-54518 was published Jan 28, 2025
A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-54507 was published Jan 28, 2025
Information disclosure while handling T2LM Action Frame in WLAN Host. Moderate Unreviewed
CVE-2023-43537 was published Jun 3, 2024
In pqframework, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20719 was published May 16, 2023
An unauthenticated remote attacker can read memory out of bounds due to improper input validation... Moderate Unreviewed
CVE-2024-26000 was published Mar 12, 2024
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module, which might... Moderate Unreviewed
CVE-2024-7347 was published Aug 14, 2024
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2025-21530 was published Jan 21, 2025
In asn1_ber_decoder of asn1_decoder.c, there is a possible out of bounds read due to a missing... Moderate Unreviewed
CVE-2018-9383 was published Jan 18, 2025
A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated... Moderate Unreviewed
CVE-2024-9843 was published Nov 12, 2024
Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive... Moderate Unreviewed
CVE-2025-0518 was published Jan 16, 2025
Information disclosure while parsing dts header atom in Video. Moderate Unreviewed
CVE-2023-43527 was published May 6, 2024
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream... Moderate Unreviewed
CVE-2023-43528 was published May 6, 2024
All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an... Moderate Unreviewed
CVE-2019-14907 was published May 24, 2022
Out-of-bounds read in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed
CVE-2024-48855 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21327 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21310 was published Jan 14, 2025
Windows CSC Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2025-21374 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21265 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21341 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21263 was published Jan 14, 2025
Windows WLAN AutoConfig Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2025-21257 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database