Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

20 advisories

Loading
Improper Access Control in an on-chip debug interface could allow a privileged attacker to enable... High Unreviewed
CVE-2025-52533 was published Feb 12, 2026
Debug code left active in AMD's Video Decoder Engine Firmware (VCN FW) could allow a attacker to... Moderate Unreviewed
CVE-2024-36319 was published Feb 12, 2026
A vulnerability was determined in TOZED ZLT M30s up to 1.47. The affected element is an unknown... Low Unreviewed
CVE-2025-15083 was published Dec 25, 2025
The CleverDisplay BlueOne hardware player is designed with its USB interfaces physically enclosed... Low Unreviewed
CVE-2025-36755 was published Dec 12, 2025
The ESP32 system on a chip (SoC) that powers the Meatmeet Pro was found to have JTAG enabled. By... Moderate Unreviewed
CVE-2025-65822 was published Dec 10, 2025
As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary... High Unreviewed
CVE-2025-65821 was published Dec 10, 2025
Enabled serial console could potentially leak information that might help attacker to find... Moderate Unreviewed
CVE-2025-12114 was published Oct 23, 2025
On-Chip Debug and Test Interface With Improper Access Control and Improper Protection against... High Unreviewed
CVE-2025-9709 was published Sep 5, 2025
A vulnerability classified as critical has been found in FNKvision FNK-GU2 up to 40.1.7. Affected... Moderate Unreviewed
CVE-2025-7213 was published Jul 9, 2025
Flock Safety LPR (License Plate Reader) devices with firmware through 2.2 have an on-chip debug... Moderate Unreviewed
CVE-2025-47822 was published Jun 27, 2025
Flock Safety Gunshot Detection devices before 1.3 have an on-chip debug interface with improper... Moderate Unreviewed
CVE-2025-47819 was published Jun 27, 2025
Successful exploitation of the vulnerability could allow an attacker that has physical access to... Moderate Unreviewed
CVE-2025-48468 was published Jun 26, 2025
The JTAG interface of Wattsense Bridge devices can be accessed with physical access to the PCB.... Moderate Unreviewed
CVE-2025-26408 was published Feb 11, 2025
A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices.... Moderate Unreviewed
CVE-2025-26409 was published Feb 11, 2025
The ventilator's microcontroller lacks memory protection. An attacker could connect to the... Critical Unreviewed
CVE-2024-48970 was published Nov 15, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal... High Unreviewed
CVE-2024-41692 was published Jul 26, 2024
This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version ... Moderate Unreviewed
CVE-2024-4231 was published May 14, 2024
On-chip debug and test interface with improper access control in some 4th Generation Intel(R)... High Unreviewed
CVE-2023-32666 was published Mar 14, 2024
Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port. Moderate Unreviewed
CVE-2022-43096 was published Nov 18, 2022
Some versions of Sonos One (1st and 2nd generation) allow partial or full memory access via... Moderate Unreviewed
CVE-2020-9285 was published Oct 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database