Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,090 advisories

Loading
In validateIpConfiguration of WifiConfigurationUtil.java, there is a possible way to trigger a... Moderate Unreviewed
CVE-2025-26423 was published Sep 4, 2025
Denial of service High Unreviewed
CVE-2025-36892 was published Sep 4, 2025
A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown... Moderate Unreviewed
CVE-2025-9670 was published Aug 29, 2025
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If... Moderate Unreviewed
CVE-2025-29898 was published Aug 29, 2025
In multiple locations, there is a possible crash loop due to resource exhaustion. This could lead... Moderate Unreviewed
CVE-2024-49740 was published Aug 27, 2025
Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video... High Unreviewed
CVE-2025-55634 was published Aug 22, 2025
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was... High Unreviewed
CVE-2025-55631 was published Aug 22, 2025
A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function... Moderate Unreviewed
CVE-2025-9308 was published Aug 21, 2025
An issue in the component /settings/localisation of Akaunting v3.1.18 allows authenticated... Moderate Unreviewed
CVE-2025-55521 was published Aug 21, 2025
CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of... Moderate Unreviewed
CVE-2025-8449 was published Aug 20, 2025
Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in... High Unreviewed
CVE-2025-55029 was published Aug 19, 2025
Malicious scripts utilizing repetitive JavaScript alerts could prevent client user interaction in... Moderate Unreviewed
CVE-2025-55028 was published Aug 19, 2025
'Denial-of-service due to out-of-memory in the Graphics: WebRender component.' This vulnerability... High Unreviewed
CVE-2025-9182 was published Aug 19, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the url... High Unreviewed
CVE-2025-55586 was published Aug 18, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the fw_ip... High Unreviewed
CVE-2025-55588 was published Aug 18, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the hostname... High Unreviewed
CVE-2025-55587 was published Aug 18, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: limit repeated... High Unreviewed
CVE-2025-38501 was published Aug 16, 2025
A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the... High Unreviewed
CVE-2025-50615 was published Aug 13, 2025
Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized... High Unreviewed
CVE-2025-53722 was published Aug 12, 2025
Uncontrolled resource consumption for some Edge Orchestrator software before version 24.11.1 for... Moderate Unreviewed
CVE-2025-26472 was published Aug 12, 2025
Uncontrolled resource consumption for some Edge Orchestrator software before version 24.11.1 for... Low Unreviewed
CVE-2025-27576 was published Aug 12, 2025
Uncontrolled resource consumption for some Edge Orchestrator software before version 24.11.1 for... Moderate Unreviewed
CVE-2025-27250 was published Aug 12, 2025
Uncontrolled resource consumption in the Linux kernel-mode driver for some Intel(R) 700 Series... Moderate Unreviewed
CVE-2025-26863 was published Aug 12, 2025
Uncontrolled resource consumption in the Linux kernel-mode driver for some Intel(R) 700 Series... Moderate Unreviewed
CVE-2025-26697 was published Aug 12, 2025
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... Moderate Unreviewed
CVE-2025-40766 was published Aug 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database