Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An... Critical Unreviewed
CVE-2026-22239 was published Jan 14, 2026
An attacker with access to the system's internal network can cause a denial of service on the... Critical Unreviewed
CVE-2026-22542 was published Jan 7, 2026
The massive sending of ARP requests causes a denial of service on one board of the charger that... Critical Unreviewed
CVE-2026-22540 was published Jan 7, 2026
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in... Critical Unreviewed
CVE-2024-23265 was published Mar 8, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7... Critical Unreviewed
CVE-2025-24260 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4.... Critical Unreviewed
CVE-2025-24269 was published Apr 1, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-24247 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, tvOS... Critical Unreviewed
CVE-2025-24264 was published Apr 1, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed
CVE-2025-30427 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6,... Critical Unreviewed
CVE-2025-43193 was published Jul 30, 2025
An input validation issue was addressed. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS... Critical Unreviewed
CVE-2025-24126 was published Jan 28, 2025
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Critical Unreviewed
CVE-2025-24235 was published Apr 1, 2025
This issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4,... Critical Unreviewed
CVE-2025-24211 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, macOS... Critical Unreviewed
CVE-2025-24190 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7... Critical Unreviewed
CVE-2025-24151 was published Jan 28, 2025
Denial of service of the web server through specific requests to this protocol Critical Unreviewed
CVE-2025-64388 was published Oct 31, 2025
Remote code injection in Log4j Critical
CVE-2021-44228 was published for com.guicedee.services:log4j-core (Maven) Dec 10, 2021
ppkarwasz
Credited to ppkarwasz
Hatching Triage Sandbox Windows 10 build 2004 (2025-08-14) and Windows 10 LTSC 2021(2025-08-14)... Critical Unreviewed
CVE-2025-61303 was published Oct 20, 2025
A potential security vulnerability has been identified for certain HP multifunction printers ... Critical Unreviewed
CVE-2021-3821 was published Dec 12, 2022
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a... Critical Unreviewed
CVE-2017-9119 was published May 14, 2022
Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications ... Critical Unreviewed
CVE-2025-21547 was published Jan 21, 2025
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... Critical Unreviewed
CVE-2023-28507 was published Mar 29, 2023
Uncontrolled Resource Consumption in Indy Node Critical
CVE-2020-11090 was published for indy-node (pip) Jun 11, 2020
Samly access control vulnerability Critical
CVE-2024-25718 was published for Samly (Erlang) Feb 11, 2024
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability... Critical Unreviewed
CVE-2023-41294 was published Sep 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database