Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,561 advisories

Loading
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or... High Unreviewed
CVE-2021-26398 was published Jan 11, 2023
Insufficient input validation in SEV firmware may allow an attacker to perform out-of-bounds... Moderate Unreviewed
CVE-2021-46768 was published Jan 11, 2023
Insufficient input validation in SVC_ECC_PRIMITIVE system call in a compromised user application... High Unreviewed
CVE-2021-46779 was published Jan 11, 2023
Insufficient input validation during parsing of the System Management Mode (SMM) binary may allow... Moderate Unreviewed
CVE-2021-46791 was published Jan 11, 2023
Failure to validate the communication buffer and communication service in the BIOS may allow an... High Unreviewed
CVE-2021-26316 was published Jan 11, 2023
Trac Open Redirect vulnerability Moderate
CVE-2008-2951 was published for trac (pip) May 1, 2022
Memory corruption in Automotive due to improper input validation. High Unreviewed
CVE-2022-33218 was published Jan 9, 2023
An Improper Input Validation vulnerability in the Juniper DHCP Daemon (jdhcpd) of Juniper... High Unreviewed
CVE-2025-30648 was published Apr 9, 2025
An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks... High Unreviewed
CVE-2025-30649 was published Apr 9, 2025
IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform... Moderate Unreviewed
CVE-2023-43037 was published Apr 10, 2025
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del... Moderate Unreviewed
CVE-2025-29150 was published Apr 10, 2025
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-32637 was published Jan 3, 2023
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could... Moderate Unreviewed
CVE-2022-32636 was published Jan 3, 2023
In meta wifi, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-32640 was published Jan 3, 2023
In ccu, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2022-32647 was published Jan 3, 2023
In gpu drm, there is a possible stack overflow due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2022-32646 was published Jan 3, 2023
In meta wifi, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-32641 was published Jan 3, 2023
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-32658 was published Jan 3, 2023
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-32657 was published Jan 3, 2023
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-32659 was published Jan 3, 2023
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to... High Unreviewed
CVE-2022-32635 was published Jan 3, 2023
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1... Low Unreviewed
CVE-2010-0547 was published May 2, 2022
An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista,... Moderate Unreviewed
CVE-2010-0719 was published May 2, 2022
The Web Install ActiveX control (CSDWebInstaller) in Cisco Secure Desktop (CSD) before 3.5.841... High Unreviewed
CVE-2010-0589 was published May 2, 2022
Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, and SeaMonkey before 2.0.4, executes a mail... Moderate Unreviewed
CVE-2010-0181 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database