Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,929 advisories

Loading
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Moderate Unreviewed
CVE-2025-47210 was published Oct 3, 2025
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2025-52427 was published Oct 3, 2025
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Moderate Unreviewed
CVE-2025-44009 was published Oct 3, 2025
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Moderate Unreviewed
CVE-2025-44011 was published Oct 3, 2025
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Moderate Unreviewed
CVE-2025-44010 was published Oct 3, 2025
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Moderate Unreviewed
CVE-2025-44008 was published Oct 3, 2025
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix null ptr... Moderate Unreviewed
CVE-2022-49139 was published Oct 1, 2025
@plone/volto vulnerable to potential DoS by invoking specific URL by anonymous user High
CVE-2025-61668 was published for @plone/volto (npm) Oct 1, 2025
argo-cd vulnerable unauthenticated DoS via malformed Gogs webhook payload High
CVE-2025-59537 was published for github.com/argoproj/argo-cd (Go) Sep 30, 2025
s0ngsari530 jake-ciolek
crenshaw-dev blakepettersson
Credited to s0ngsari530, jake-ciolek, crenshaw-dev, and blakepettersson
Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability.... High Unreviewed
CVE-2025-59668 was published Sep 30, 2025
A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the... Moderate Unreviewed
CVE-2025-11013 was published Sep 26, 2025
A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function... Moderate Unreviewed
CVE-2025-11017 was published Sep 26, 2025
A vulnerability was found in BehaviorTree up to 4.7.0. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-11011 was published Sep 26, 2025
glib-networking's OpenSSL backend fails to properly check the return value of memory allocation... Low Unreviewed
CVE-2025-60019 was published Sep 25, 2025
A NULL pointer dereference in TOTOLINK N600R firmware v4.3.0cu.7866_B2022506 allows attackers to... Moderate Unreviewed
CVE-2025-57623 was published Sep 25, 2025
NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a... Low Unreviewed
CVE-2025-23346 was published Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved: iommu/omap: Fix regression... Moderate Unreviewed
CVE-2022-49083 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: qede: confirm skb is... Moderate Unreviewed
CVE-2022-49084 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: prevent... Moderate Unreviewed
CVE-2021-47650 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: clk: qcom: ipq8074: fix PCI... Moderate Unreviewed
CVE-2021-47647 was published Sep 23, 2025
A null pointer dereference occurs in the function break_word_for_overflow_wrap() in MuPDF 1.26.4... High Unreviewed
CVE-2025-55780 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: arch/arm64: Fix topology... Moderate Unreviewed
CVE-2022-49090 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: gpio: Restrict usage of GPIO... Moderate Unreviewed
CVE-2022-49072 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Ignore... Moderate Unreviewed
CVE-2022-49138 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix panic on... Moderate Unreviewed
CVE-2022-49195 was published Sep 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database