GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 15,098
Composer 2,891
Erlang 24
GitHub Actions 39
Go 2,240
Maven 2,698
npm 2,899
NuGet 500
pip 2,728
Pub 5
RubyGems 364
Rust 889
Swift 19

Unreviewed advisories

All unreviewed 139,981

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

27 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Nokogiri does not check the return value from xmlC14NExecute Moderate

GHSA-wx95-c6cv-8532 was published for nokogiri (RubyGems) Feb 18, 2026

A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of... Moderate Unreviewed

CVE-2025-11839 was published Oct 16, 2025

An unchecked return value in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy... Moderate Unreviewed

CVE-2025-55146 was published Sep 9, 2025

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: Add missing check... Moderate Unreviewed

CVE-2025-38602 was published Aug 19, 2025

In the Linux kernel, the following vulnerability has been resolved: ACPI: PPTT: Fix to avoid... Moderate Unreviewed

CVE-2023-53070 was published May 2, 2025

In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the... Moderate Unreviewed

CVE-2025-22026 was published Apr 16, 2025

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the... Moderate Unreviewed

CVE-2025-32414 was published Apr 8, 2025

An attacker with low privileges can manipulate the requested memory size, causing the application... Moderate Unreviewed

CVE-2024-12650 was published Mar 5, 2025

list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return... Moderate Unreviewed

CVE-2025-25724 was published Mar 2, 2025

A flaw was found in grub2 where the grub_extcmd_dispatcher() function calls grub_arg_list_alloc()... Moderate Unreviewed

CVE-2024-45775 was published Feb 18, 2025

Fault Injection vulnerability in RsaPrivateDecryption function in wolfssl/wolfcrypt/src/rsa.c in... Moderate Unreviewed

CVE-2024-1545 was published Aug 30, 2024

Unchecked return value in firmware for some Intel(R) CSME may allow an unauthenticated user to... Moderate Unreviewed

CVE-2023-40067 was published Aug 14, 2024

CWE-252: Unchecked Return Value vulnerability exists that could cause denial of service of the... Moderate Unreviewed

CVE-2024-37039 was published Jun 12, 2024

In the Linux kernel, the following vulnerability has been resolved: drivers: perf: Check... Moderate Unreviewed

CVE-2023-52797 was published May 21, 2024

In the Linux kernel, the following vulnerability has been resolved: binder: make sure fd closes... Moderate Unreviewed

CVE-2021-47360 was published May 21, 2024

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add missing... Moderate Unreviewed

CVE-2023-52680 was published May 17, 2024

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec... Moderate Unreviewed

CVE-2023-5215 was published Sep 28, 2023

Unchecked return value in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450... Moderate Unreviewed

CVE-2023-29243 was published Aug 11, 2023

ecrecover can return undefined data if signature does not verify Moderate

CVE-2023-37902 was published for vyper (pip) Jul 25, 2023

The Site Kit by Google plugin for WordPress is vulnerable to Sensitive Information Disclosure in... Moderate Unreviewed

CVE-2020-8934 was published Jul 7, 2023

Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed

CVE-2023-3013 was published May 31, 2023

An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers... Moderate Unreviewed

CVE-2022-3108 was published Dec 14, 2022

A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. Affected by this... Moderate Unreviewed

CVE-2022-3807 was published Nov 2, 2022

An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic... Moderate Unreviewed

CVE-2022-30783 was published May 27, 2022

A denial of service issue was addressed with improved state handling. This issue is fixed in... Moderate Unreviewed

CVE-2020-27898 was published May 24, 2022

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

27 advisories