Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

114,105 advisories

Loading
External control of file name or path in Windows WLAN Service allows an authorized attacker to... High Unreviewed
CVE-2025-59511 was published Nov 11, 2025
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-59505 was published Nov 11, 2025
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized... High Unreviewed
CVE-2025-59512 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59506 was published Nov 11, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-59499 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59507 was published Nov 11, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-59508 was published Nov 11, 2025
Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23... High Unreviewed
CVE-2025-35971 was published Nov 11, 2025
Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may... High Unreviewed
CVE-2025-35968 was published Nov 11, 2025
Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-30398 was published Nov 11, 2025
Out-of-bounds read for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23... High Unreviewed
CVE-2025-35967 was published Nov 11, 2025
Improper input validation for some Intel QuickAssist Technology before version 2.6.0 within Ring... High Unreviewed
CVE-2025-33000 was published Nov 11, 2025
NVIDIA AIStore contains a vulnerability in AuthN. A successful exploit of this vulnerability... High Unreviewed
CVE-2025-33186 was published Nov 11, 2025
NVIDIA NeMo Framework for all platforms contains a vulnerability in the bert services component... High Unreviewed
CVE-2025-33178 was published Nov 11, 2025
Insufficient control flow management for some Intel(R) PROSet/Wireless WiFi Software for Windows... High Unreviewed
CVE-2025-35963 was published Nov 11, 2025
Incorrect default permissions in some firmware for the Intel(R) Arc(TM) B-series GPUs within Ring... High Unreviewed
CVE-2025-32091 was published Nov 11, 2025
Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23... High Unreviewed
CVE-2025-30255 was published Nov 11, 2025
Active debug code for some Intel UEFI reference platforms within Ring 0: Kernel may allow a... High Unreviewed
CVE-2025-30185 was published Nov 11, 2025
Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23... High Unreviewed
CVE-2025-33029 was published Nov 11, 2025
NVIDIA Megatron-LM for all platforms contains a vulnerability in a script, where malicious data... High Unreviewed
CVE-2025-23357 was published Nov 11, 2025
NVIDIA NeMo Framework for all platforms contains a vulnerability in a script, where malicious... High Unreviewed
CVE-2025-23361 was published Nov 11, 2025
Improper input validation for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001... High Unreviewed
CVE-2025-24299 was published Nov 11, 2025
Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001... High Unreviewed
CVE-2025-24838 was published Nov 11, 2025
Out-of-bounds write for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3:... High Unreviewed
CVE-2025-27713 was published Nov 11, 2025
Use of unmaintained third party components for some Intel(R) Processor Identification Utility... High Unreviewed
CVE-2025-20010 was published Nov 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database