GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
278 advisories
Filter by severity
A malicious actor with access to the network and under certain conditions could exploit an...
High
Unreviewed
CVE-2026-54409
was published
Jul 2, 2026
Docker Sandboxes (sbx) blocks ICMP egress with an authorizer applied only at network-creation...
Moderate
Unreviewed
CVE-2026-12539
was published
Jun 18, 2026
Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal...
Moderate
Unreviewed
CVE-2025-35991
was published
May 12, 2026
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable:...
Moderate
Unreviewed
CVE-2024-45018
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: openvswitch: fix...
Moderate
Unreviewed
CVE-2024-38558
was published
Jun 19, 2024
The Hash-based Message Authentication Code (HMAC) provider in Java on Apple Mac OS X 10.4.11, 10...
High
Unreviewed
CVE-2008-3637
was published
May 2, 2022
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite ...
Moderate
Unreviewed
CVE-2018-2934
was published
May 13, 2022
prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP...
Moderate
Unreviewed
CVE-2001-1471
was published
Apr 30, 2022
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure...
Low
Unreviewed
CVE-2021-36319
was published
Nov 21, 2021
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which...
High
Unreviewed
CVE-2008-0062
was published
May 1, 2022
A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that...
High
Unreviewed
CVE-2026-0940
was published
Mar 11, 2026
An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for...
High
Unreviewed
CVE-2025-66363
was published
Mar 3, 2026
A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function...
Moderate
Unreviewed
CVE-2025-14955
was published
Dec 19, 2025
Missing Checks in certain functions related to RMP initialization can allow a local admin...
Low
Unreviewed
CVE-2025-48509
was published
Feb 10, 2026
Improper initialization for some ESXi kernel mode driver for the Intel(R) Ethernet 800-Series...
Low
Unreviewed
CVE-2025-25058
was published
Feb 10, 2026
In the context switch logic Xen attempts to skip an IBPB in the case of
a vCPU returning to a CPU...
Low
Unreviewed
CVE-2026-23553
was published
Jan 28, 2026
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of...
High
Unreviewed
CVE-2026-21913
was published
Jan 15, 2026
Improper resource management in firmware of some Solidigm DC Products may allow an attacker with...
Moderate
Unreviewed
CVE-2025-12902
was published
Nov 7, 2025
p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of...
High
Unreviewed
CVE-2024-28084
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
fuse: Initialize beyond-EOF...
Moderate
Unreviewed
CVE-2024-44947
was published
Sep 2, 2024
Improper initialization in firmware for some Intel(R) CSME may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-48361
was published
Aug 14, 2024
Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may...
Moderate
Unreviewed
CVE-2024-31157
was published
Feb 13, 2025
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input...
Moderate
Unreviewed
CVE-2022-1122
was published
Mar 30, 2022
Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor...
Low
Unreviewed
CVE-2024-36331
was published
Sep 6, 2025
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: clean up...
Moderate
Unreviewed
CVE-2025-21906
was published
Apr 1, 2025
ProTip!
Advisories are also available from the
GraphQL API