Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

293 advisories

Loading
The fetch(3) library uses environment variables for passing certain information, including the... High Unreviewed
CVE-2024-45289 was published Nov 12, 2024
Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R)... Moderate Unreviewed
CVE-2024-25563 was published Nov 13, 2024
An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-11158 was published Dec 5, 2024
Improper initialization in the firmware for some Intel(R) AMT and Intel(R) Standard Manageability... Moderate Unreviewed
CVE-2024-26021 was published Feb 13, 2025
Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may... Moderate Unreviewed
CVE-2024-31157 was published Feb 13, 2025
An issue in Bento4 v1.6.0-641 allows an attacker to trigger a segmentation fault via Ap4Atom.cpp,... Moderate Unreviewed
CVE-2025-25947 was published Feb 20, 2025
A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by... Low Unreviewed
CVE-2025-2149 was published Mar 10, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up... Moderate Unreviewed
CVE-2025-21906 was published Apr 1, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog
Credited to warriordog
Improper initialization in the UEFI firmware for the Intel(R) Server D50DNP and M50FCP boards may... Moderate Unreviewed
CVE-2025-21100 was published May 13, 2025
The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39... Moderate Unreviewed
CVE-2025-5702 was published Jun 5, 2025
The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40... Moderate Unreviewed
CVE-2025-5745 was published Jun 5, 2025
AMI APTIOV contains a vulnerability in BIOS where a user may cause “Improper Initialization” by... Moderate Unreviewed
CVE-2025-22834 was published Aug 12, 2025
Improper initialization in the Linux kernel-mode driver for some Intel(R) I350 Series Ethernet... Low Unreviewed
CVE-2025-24511 was published Aug 12, 2025
IdMap from_iter may lead to uninitialized memory being freed on drop Moderate
GHSA-qq4c-hm99-979m was published for id-map (Rust) Aug 18, 2025
ArrayQueue's push_front is not panic-safe Moderate
GHSA-xqjr-wfx3-gmxv was published for array-queue (Rust) Sep 2, 2025
Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor... Low Unreviewed
CVE-2024-36331 was published Sep 6, 2025
Improper resource management in firmware of some Solidigm DC Products may allow an attacker with... Moderate Unreviewed
CVE-2025-12902 was published Nov 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database