Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,781
NuGet
681
pip
3,460
Pub
12
RubyGems
893
Rust
890
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,119 advisories

Loading
In rare scenarios, the cpca process on the Security Management Server / Domain Management Server... Moderate Unreviewed
CVE-2024-24911 was published Feb 6, 2025
Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-57958 was published Feb 6, 2025
When URL categorization is configured on a virtual server, undisclosed requests can cause TMM to... High Unreviewed
CVE-2025-24497 was published Feb 5, 2025
Information disclosure while parsing the OCI IE with invalid length. High Unreviewed
CVE-2024-49838 was published Feb 3, 2025
Memory corruption during management frame processing due to mismatch in T2LM info element. High Unreviewed
CVE-2024-49839 was published Feb 3, 2025
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in... High Unreviewed
CVE-2024-38404 was published Feb 3, 2025
Information disclosure while processing information on firmware image during core initialization. Moderate Unreviewed
CVE-2024-38414 was published Feb 3, 2025
Information disclosure while processing IO control commands. Moderate Unreviewed
CVE-2024-38417 was published Feb 3, 2025
Information disclosure during audio playback. Moderate Unreviewed
CVE-2024-38416 was published Feb 3, 2025
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2025-20640 was published Feb 3, 2025
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2025-20643 was published Feb 3, 2025
In HeifDecoderImpl::getScanline of HeifDecoderImpl.cpp, there is a possible out of bounds read... Moderate Unreviewed
CVE-2017-13317 was published Jan 28, 2025
In HeifDataSource::readAt of HeifDecoderImpl.cpp, there is a possible out of bounds read due to... Moderate Unreviewed
CVE-2017-13318 was published Jan 28, 2025
NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker... Low Unreviewed
CVE-2024-0149 was published Jan 28, 2025
This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.3... Moderate Unreviewed
CVE-2025-24092 was published Jan 28, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24115 was published Jan 28, 2025
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2024-54478 was published Jan 28, 2025
A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-54507 was published Jan 28, 2025
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2,... Moderate Unreviewed
CVE-2024-54518 was published Jan 28, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24093 was published Jan 28, 2025
Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote... High Unreviewed
CVE-2025-0612 was published Jan 22, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24417 was published Jan 22, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Low Unreviewed
CVE-2025-21546 was published Jan 21, 2025
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2025-21530 was published Jan 21, 2025
In multiple locations, there is a possible way to read protected files due to a missing... High Unreviewed
CVE-2018-9464 was published Jan 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database