Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,321 advisories

Loading
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by... Moderate Unreviewed
CVE-2025-22832 was published Oct 14, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by... Moderate Unreviewed
CVE-2025-22831 was published Oct 14, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without... Moderate Unreviewed
CVE-2025-22833 was published Oct 14, 2025
Out-of-bounds write in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local... Moderate Unreviewed
CVE-2025-21070 was published Oct 10, 2025
Out-of-bounds write in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025... Moderate Unreviewed
CVE-2025-21051 was published Oct 10, 2025
Out-of-bounds write in fingerprint trustlet prior to SMR Oct-2025 Release 1 allows local... Moderate Unreviewed
CVE-2025-21044 was published Oct 10, 2025
Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so... Moderate Unreviewed
CVE-2025-21052 was published Oct 10, 2025
Out-of-bounds write in the parsing header for JPEG decoding in libpadm.so prior to SMR Oct-2025... Moderate Unreviewed
CVE-2025-21053 was published Oct 10, 2025
When decoding a frame for a SANM file (ANIM v0 variant), the decoded data can be larger than the... Moderate Unreviewed
CVE-2025-59730 was published Oct 6, 2025
When parsing the header for a DHAV file, there's an integer underflow in offset calculation that... Moderate Unreviewed
CVE-2025-59729 was published Oct 6, 2025
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run... Moderate Unreviewed
CVE-2025-59731 was published Oct 6, 2025
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a... Moderate Unreviewed
CVE-2025-59299 was published Oct 3, 2025
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a... Moderate Unreviewed
CVE-2025-59300 was published Oct 3, 2025
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a... Moderate Unreviewed
CVE-2025-59298 was published Oct 3, 2025
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a... Moderate Unreviewed
CVE-2025-59297 was published Oct 3, 2025
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the cloneType parameter in... Moderate Unreviewed
CVE-2025-60661 was published Oct 2, 2025
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2025-43400 was published Sep 29, 2025
Out-of-bounds write vulnerabilities in print processing of Generic Plus PCL6 Printer Driver /... Moderate Unreviewed
CVE-2025-9903 was published Sep 29, 2025
A security flaw has been discovered in OGRECave Ogre up to 14.4.1. This issue affects the... Moderate Unreviewed
CVE-2025-11014 was published Sep 26, 2025
In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds... Moderate Unreviewed
CVE-2025-46152 was published Sep 25, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local... Moderate Unreviewed
CVE-2025-23275 was published Sep 24, 2025
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7,... Moderate Unreviewed
CVE-2025-43353 was published Sep 16, 2025
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2025-43302 was published Sep 16, 2025
serde_yml crate is unsound and unmaintained Moderate
GHSA-hhw4-xg65-fp2x was published for serde_yml (Rust) Sep 15, 2025
Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a... Moderate Unreviewed
CVE-2025-0034 was published Sep 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database