Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

95 advisories

Loading
A buffer overflow vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2025-62852 was published Jan 2, 2026
A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker... Low Unreviewed
CVE-2025-53597 was published Jan 2, 2026
A buffer overflow vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2025-53593 was published Jan 2, 2026
On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message... Low Unreviewed
CVE-2025-11964 was published Dec 31, 2025
Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that... Low Unreviewed
CVE-2025-11624 was published Oct 21, 2025
In display, there is a possible out of bounds write due to a missing bounds check. This could... Low Unreviewed
CVE-2025-20769 was published Dec 2, 2025
/etc/timezone can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-IC4:... Low Unreviewed
CVE-2025-12603 was published Nov 1, 2025
/etc/avahi/services/z9.service can be Arbitrarily Written.This issue affects BLU-IC2: through 1... Low Unreviewed
CVE-2025-12602 was published Nov 1, 2025
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Low Unreviewed
CVE-2024-40777 was published Jul 30, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted... Low Unreviewed
CVE-2024-8443 was published Sep 10, 2024
Memory handling issue in editcap could cause denial of service via crafted capture file Low Unreviewed
CVE-2024-4853 was published May 14, 2024
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in... Low Unreviewed
CVE-2025-43349 was published Sep 16, 2025
ImageMagick BlobStream Forward-Seek Under-Allocation Low
CVE-2025-57807 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Sep 5, 2025
mescuwa
Credited to mescuwa
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability... Low Unreviewed
CVE-2021-36054 was published May 24, 2022
Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in... Low Unreviewed
CVE-2025-2574 was published Mar 20, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53697 was published Mar 7, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53699 was published Mar 7, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-38638 was published Mar 7, 2025
A vulnerability has been found in tcpreplay 4.5.1. This vulnerability affects the function... Low Unreviewed
CVE-2025-9019 was published Aug 15, 2025
Bouncy Castle for Java has Out-of-Bounds Write Vulnerability Low
CVE-2025-9340 was published for org.bouncycastle:bc-fips (Maven) Aug 22, 2025
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one'... Low Unreviewed
CVE-2025-5917 was published Jun 9, 2025
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the... Low Unreviewed
CVE-2022-41595 was published Oct 14, 2022
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-27132 was published May 6, 2025
wasmtime_trap_code C API function has out of bounds write vulnerability Low
CVE-2022-39394 was published for wasmtime (Rust) Feb 1, 2024
kpreisser
Credited to kpreisser
Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.0.0, contains an out-of-bounds write... Low Unreviewed
CVE-2025-26479 was published Apr 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database