GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,239
Composer 5,912
Erlang 70
GitHub Actions 52
Go 3,949
Maven 6,605
npm 6,350
NuGet 969
pip 5,239
Pub 13
RubyGems 1,062
Rust 1,383
Swift 56

Unreviewed advisories

All unreviewed 305,743

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

116 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim... Critical Unreviewed

CVE-2026-31657 was published Apr 24, 2026

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix... Critical Unreviewed

CVE-2026-31436 was published Apr 22, 2026

A denial of service vulnerability exists in the lasso_provider_verify_saml_signature... Critical Unreviewed

CVE-2025-46404 was published Nov 5, 2025

`NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-NULL. When it was... Critical Unreviewed

CVE-2024-11705 was published Nov 26, 2024

An issue in coap_msg.c in Keith Cullen's FreeCoAP v.0.7 allows remote attackers to cause a Denial... Critical Unreviewed

CVE-2024-31030 was published May 31, 2024

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new... Critical Unreviewed

CVE-2024-35960 was published May 20, 2024

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix RCU... Critical Unreviewed

CVE-2024-27053 was published May 1, 2024

Joda Time v2.12.5 was discovered to contain a NullPointerException via the component org.joda... Critical Unreviewed

CVE-2024-23080 was published Apr 10, 2024

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org... Critical Unreviewed

CVE-2024-23078 was published Apr 8, 2024

An issue was discovered in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers... Critical Unreviewed

CVE-2023-46427 was published Mar 9, 2024

An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial... Critical Unreviewed

CVE-2023-47003 was published Nov 16, 2023

The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in... Critical Unreviewed

CVE-2022-36648 was published Aug 22, 2023

An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy... Critical Unreviewed

CVE-2023-23087 was published Feb 3, 2023

Duplicate Advisory: ecnepsnai/web vulnerable to Uncontrolled Resource Consumption Critical

GHSA-jpgg-cp2x-qrw3 was published for github.com/ecnepsnai/web (Go) Dec 28, 2022 • withdrawn

In libarchive 3.6.1, the software does not check for an error after calling calloc function that... Critical Unreviewed

CVE-2022-36227 was published Nov 22, 2022

Null Pointer Dereference may occur due to improper validation while processing crafted SDP body... Critical Unreviewed

CVE-2021-1946 was published May 24, 2022

NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5... Critical Unreviewed

CVE-2021-28300 was published May 24, 2022

u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to... Critical Unreviewed

CVE-2020-11168 was published May 24, 2022

A null pointer dereference was addressed with improved input validation. This issue is fixed in... Critical Unreviewed

CVE-2019-8572 was published May 24, 2022

Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed

CVE-2019-8205 was published May 24, 2022

Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c. Critical Unreviewed

CVE-2019-16092 was published May 24, 2022

Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed

CVE-2019-8045 was published May 24, 2022

Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed

CVE-2019-8017 was published May 24, 2022

Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed

CVE-2019-8006 was published May 24, 2022

In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference... Critical Unreviewed

CVE-2019-10993 was published May 24, 2022

Previous1…5 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

116 advisories