Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
48
Go
3,377
Maven
5,000+
npm
5,000+
NuGet
881
pip
4,573
Pub
13
RubyGems
1,013
Rust
1,205
Swift
51
Unreviewed advisories
All unreviewed
5,000+

41 advisories

Loading
An invalid free in mb_detect_order can cause the application to crash or potentially result in... High Unreviewed
CVE-2019-11930 was published May 24, 2022
Memory corruption while reading ACPI config through the user mode app. High Unreviewed
CVE-2023-43532 was published Feb 6, 2024
A security issue exists due to improper handling of malformed CIP packets during fuzzing. The... High Unreviewed
CVE-2025-13824 was published Dec 15, 2025
A memory corruption vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker... High Unreviewed
CVE-2025-11838 was published Dec 5, 2025
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via... High Unreviewed
CVE-2024-2955 was published Mar 26, 2024
An arbitrary free vulnerability exists in the cv_close functionality of Dell ControlVault3 prior... High Unreviewed
CVE-2025-25215 was published Jun 14, 2025
BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting... High Unreviewed
CVE-2021-28216 was published May 24, 2022
Memory corruption while handling invalid inputs in application info setup. High Unreviewed
CVE-2025-47329 was published Sep 24, 2025
V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in... High Unreviewed
CVE-2025-47749 was published May 19, 2025
Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto,... High Unreviewed
CVE-2022-25662 was published Oct 19, 2022
Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2022-25661 was published Oct 19, 2022
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker... High Unreviewed
CVE-2025-30379 was published May 13, 2025
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that... High Unreviewed
CVE-2007-4367 was published May 1, 2022
In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect... High Unreviewed
CVE-2021-47087 was published Mar 4, 2024
Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a... High Unreviewed
CVE-2024-44852 was published Dec 7, 2024
In the Linux kernel, the following vulnerability has been resolved: bluetooth/hci: disallow... High Unreviewed
CVE-2024-42132 was published Jul 30, 2024
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09,... High Unreviewed
CVE-2024-25079 was published May 15, 2024
nanopb vulnerable to invalid free() call with oneofs and PB_ENABLE_MALLOC High
CVE-2021-21401 was published for nanopb (pip) Aug 30, 2024
In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not... High Unreviewed
CVE-2022-48425 was published Mar 19, 2023
It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay... High Unreviewed
CVE-2024-6607 was published Jul 9, 2024
In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine... High Unreviewed
CVE-2023-34312 was published Jun 1, 2023
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted... High Unreviewed
CVE-2022-26942 was published Oct 19, 2023
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an... High Unreviewed
CVE-2023-4883 was published Oct 3, 2023
Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can... High Unreviewed
CVE-2022-42309 was published Nov 1, 2022
Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language... High Unreviewed
CVE-2021-3939 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database