Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,479
Maven
5,000+
npm
5,000+
NuGet
886
pip
4,740
Pub
13
RubyGems
1,031
Rust
1,225
Swift
53
Unreviewed advisories
All unreviewed
5,000+

517 advisories

Loading
Issue summary: An invalid or NULL pointer dereference can happen in an application processing a... Moderate Unreviewed
CVE-2026-22795 was published Jan 27, 2026
Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS... Moderate Unreviewed
CVE-2026-22796 was published Jan 27, 2026
Issue summary: A type confusion vulnerability exists in the TimeStamp Response verification code... High Unreviewed
CVE-2025-69420 was published Jan 27, 2026
A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to... Moderate Unreviewed
CVE-2025-12387 was published Jan 27, 2026
go-tuf affected by client DoS via malformed server response Moderate
CVE-2026-23991 was published for github.com/theupdateframework/go-tuf/v2 (Go) Jan 21, 2026
1seal Credited to 1seal, kommendorkapten, and rdimitrov kommendorkapten kommendorkapten
rdimitrov rdimitrov
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding... High Unreviewed
CVE-2026-21910 was published Jan 15, 2026
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service... Moderate Unreviewed
CVE-2025-59960 was published Jan 15, 2026
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol... Moderate Unreviewed
CVE-2025-60011 was published Jan 15, 2026
A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to... Moderate Unreviewed
CVE-2026-0227 was published Jan 15, 2026
Improper Check for Unusual or Exceptional Conditions vulnerability in ABB WebPro SNMP Card... High Unreviewed
CVE-2025-4675 was published Jan 7, 2026
In Modem, there is a possible system crash due to incorrect error handling. This could lead to... High Unreviewed
CVE-2025-20761 was published Jan 6, 2026
CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or... High Unreviewed
CVE-2025-61976 was published Dec 16, 2025
CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or... Moderate Unreviewed
CVE-2025-66357 was published Dec 16, 2025
Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This... High Unreviewed
CVE-2025-14322 was published Dec 9, 2025
NVIDIA Triton Inference Server contains a vulnerability where an attacker may cause an improper... High Unreviewed
CVE-2025-33201 was published Dec 3, 2025
An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local... Moderate Unreviewed
CVE-2025-62875 was published Nov 20, 2025
Drupal core allows Forceful Browsing Low
CVE-2025-13080 was published for drupal/core (Composer) Nov 18, 2025
A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an... Moderate Unreviewed
CVE-2025-4619 was published Nov 13, 2025
Improper conditions check for some Intel(R) QAT Windows software before version 2.6.0. within... Moderate Unreviewed
CVE-2025-32088 was published Nov 11, 2025
The KMIP response parser built into mongo binaries is overly tolerant of certain malformed... Moderate Unreviewed
CVE-2025-12657 was published Nov 3, 2025
InventoryGui affected by item duplication in GUIs which use GuiStorageElement Moderate
CVE-2025-62783 was published for de.themoep:inventorygui (Maven) Oct 27, 2025
FaMa91 Credited to FaMa91
Oxford Nanopore Technologies' MinKNOW software at or prior to version 24.11 creates a temporary... Moderate Unreviewed
CVE-2025-10937 was published Oct 23, 2025
Incorrect Content-Type header in one of the APIs (`text/html` instead of `application/json`)... Critical Unreviewed
CVE-2025-11925 was published Oct 17, 2025
Mattermost Desktop App versions <=5.13.0 fail to manage modals in the Mattermost Desktop App that... Moderate Unreviewed
CVE-2025-55035 was published Oct 16, 2025
An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS... Moderate Unreviewed
CVE-2024-26008 was published Oct 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database