Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,169
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+

121 advisories

Loading
Incus: CreateCustomVolumeFromBackup nil-pointer dereference on volume_snapshots[*].expires_at (sibling-field variant of GHSA-r7w7) Low
CVE-2026-48756 was published for github.com/lxc/incus/v7/cmd/incusd (Go) Jun 26, 2026
tonghuaroot Credited to tonghuaroot and stgraber stgraber stgraber
Incus: Nil-pointer dereference in createDependentVolumesFromBackup on disk.{Volume,VolumeSnapshots,Pool} Low
CVE-2026-48754 was published for github.com/lxc/incus/v7/cmd/incusd (Go) Jun 26, 2026
tonghuaroot Credited to tonghuaroot and stgraber stgraber stgraber
Nokogiri: Null Pointer Dereference calling methods on uninitialized wrapper classes Low
GHSA-9cv2-cfxc-v4v2 was published for nokogiri (RubyGems) Jun 19, 2026
cla7aye15I4nd Credited to cla7aye15I4nd
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in... Low Unreviewed
CVE-2026-47337 was published May 28, 2026
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in... Low Unreviewed
CVE-2026-47327 was published May 28, 2026
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. Low Unreviewed
CVE-2026-25110 was published May 19, 2026
Tor before 0.4.9.7 has a NULL pointer dereference when a CERT cell is received out of order, aka... Low Unreviewed
CVE-2026-44602 was published May 7, 2026
Argo Affected by SSO RBAC Delegation Nil Pointer Dereference DoS (gatekeeper.go) Low
CVE-2026-42183 was published for github.com/argoproj/argo-workflows/v4 (Go) May 4, 2026
Wernerina Credited to Wernerina, Joibel, and isubasinghe Joibel Joibel
isubasinghe isubasinghe
mutt before 2.3.2 has a show_sig_summary NULL pointer dereference. Low Unreviewed
CVE-2026-43864 was published May 4, 2026
Electron: Crash in clipboard.readImage() on malformed clipboard image data Low
CVE-2026-34781 was published for electron (npm) Apr 7, 2026
frostb1ten Credited to frostb1ten
A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can... Low Unreviewed
CVE-2026-0968 was published Mar 26, 2026
libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after... Low Unreviewed
CVE-2026-32778 was published Mar 16, 2026
A NULL Pointer Dereference vulnerability [CWE-476] vulnerability in Fortinet FortiWeb 8.0.0... Low Unreviewed
CVE-2026-24641 was published Mar 10, 2026
Sliver is Vulnerable to Authenticated Nil-Pointer Dereference through its Handlers Low
CVE-2026-29781 was published for github.com/bishopfox/sliver (Go) Mar 5, 2026
skoveit Credited to skoveit
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-66274 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-58472 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-59386 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54148 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-48722 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-47209 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54146 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54147 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-53598 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote... Low Unreviewed
CVE-2025-54163 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-30266 was published Feb 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database