Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,949
Maven
5,000+
npm
5,000+
NuGet
969
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,383
Swift
56
Unreviewed advisories
All unreviewed
5,000+

118 advisories

Loading
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in... Low Unreviewed
CVE-2026-47337 was published May 28, 2026
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in... Low Unreviewed
CVE-2026-47327 was published May 28, 2026
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. Low Unreviewed
CVE-2026-25110 was published May 19, 2026
Tor before 0.4.9.7 has a NULL pointer dereference when a CERT cell is received out of order, aka... Low Unreviewed
CVE-2026-44602 was published May 7, 2026
Argo Affected by SSO RBAC Delegation Nil Pointer Dereference DoS (gatekeeper.go) Low
CVE-2026-42183 was published for github.com/argoproj/argo-workflows/v4 (Go) May 4, 2026
Wernerina Credited to Wernerina, Joibel, and isubasinghe Joibel Joibel
isubasinghe isubasinghe
mutt before 2.3.2 has a show_sig_summary NULL pointer dereference. Low Unreviewed
CVE-2026-43864 was published May 4, 2026
Electron: Crash in clipboard.readImage() on malformed clipboard image data Low
CVE-2026-34781 was published for electron (npm) Apr 7, 2026
frostb1ten Credited to frostb1ten
A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can... Low Unreviewed
CVE-2026-0968 was published Mar 26, 2026
libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after... Low Unreviewed
CVE-2026-32778 was published Mar 16, 2026
A NULL Pointer Dereference vulnerability [CWE-476] vulnerability in Fortinet FortiWeb 8.0.0... Low Unreviewed
CVE-2026-24641 was published Mar 10, 2026
Sliver is Vulnerable to Authenticated Nil-Pointer Dereference through its Handlers Low
CVE-2026-29781 was published for github.com/bishopfox/sliver (Go) Mar 5, 2026
skoveit Credited to skoveit
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-58472 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-66274 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-59386 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-48722 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54146 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54147 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-47209 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-53598 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-54148 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote... Low Unreviewed
CVE-2025-54163 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-30266 was published Feb 11, 2026
git2 has potential undefined behavior when dereferencing Buf struct Low
GHSA-j39j-6gw9-jw6h was published for git2 (Rust) Feb 4, 2026
In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success... Low Unreviewed
CVE-2026-24883 was published Jan 27, 2026
In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler... Low Unreviewed
CVE-2026-24515 was published Jan 23, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database