Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

463 advisories

Loading
A security issue exists within the Studio 5000 Logix Designer add-on profile (AOP) for the... High Unreviewed
CVE-2025-9437 was published Oct 14, 2025
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41886 was published Dec 24, 2024
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application include Windows... High Unreviewed
CVE-2025-34193 was published Sep 19, 2025
Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check Critical
CVE-2025-10156 was published for picklescan (pip) Sep 10, 2025
Duplicate Advisory: Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check Critical
GHSA-4vr7-g93g-cf6m was published for picklescan (pip) Sep 17, 2025 withdrawn
A security issue exists in the protected mode of EN4TR devices, where sending specifically... High Unreviewed
CVE-2025-8008 was published Sep 9, 2025
Tonic has remotely exploitable denial of service vulnerability Moderate
CVE-2024-47609 was published for tonic (Rust) Oct 1, 2024
jayvdb
Credited to jayvdb
Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager,... High Unreviewed
CVE-2022-36923 was published Aug 11, 2022
Cosmos SDK: x/group can halt when erroring in EndBlocker High
GHSA-47ww-ff84-4jrg was published for github.com/cosmos/cosmos-sdk (Go) Mar 12, 2025
Vulnerability of improper processing of abnormal conditions in huge page separation. Impact:... High Unreviewed
CVE-2025-54634 was published Aug 6, 2025
Babylon vulnerable to chain half when transaction has fees different than `ubbn` High
GHSA-56j4-446m-qrf6 was published for github.com/babylonlabs-io/babylon (Go) Jun 30, 2025
A security issue exists in Vertex Gemini API for customers using VPC-SC. By utilizing a custom... Moderate Unreviewed
CVE-2024-12236 was published Dec 10, 2024
An Improper Handling of Exceptional Conditions vulnerability in route processing of Juniper... High Unreviewed
CVE-2025-52947 was published Jul 11, 2025
An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter (BPF)... High Unreviewed
CVE-2025-52948 was published Jul 11, 2025
A vulnerability has been identified in RUGGEDCOM i800 (All versions), RUGGEDCOM i801 (All... Moderate Unreviewed
CVE-2025-41222 was published Jul 8, 2025
ModSecurity 3.x before 3.0.4 mishandles key-value pair parsing, as demonstrated by a "string... Moderate Unreviewed
CVE-2019-25043 was published May 24, 2022
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow... High Unreviewed
CVE-2021-42146 was published Jan 24, 2024
An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through... High Unreviewed
CVE-2021-42145 was published Jan 24, 2024
An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could... Critical Unreviewed
CVE-2021-42141 was published Jan 23, 2024
Improper handling of length parameter inconsistency vulnerability in Mitsubishi Electric FA... Critical Unreviewed
CVE-2021-20588 was published May 24, 2022
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers... Critical Unreviewed
CVE-2021-42142 was published Jan 24, 2024
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.* High
CVE-2018-8039 was published for org.apache.cxf:apache-cxf (Maven) Oct 19, 2018
sunSUNQ ebickle
Credited to sunSUNQ and ebickle
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows... High Unreviewed
CVE-2023-41151 was published Dec 14, 2023
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an... High Unreviewed
CVE-2025-29826 was published May 13, 2025
An Improper Handling of Exceptional Conditions vulnerability in the Class of Service daemon (cosd... Moderate Unreviewed
CVE-2024-21610 was published Apr 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database