Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,934 advisories

Loading
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. High Unreviewed
CVE-2025-21441 was published Apr 7, 2025
Memory corruption while accessing MSM channel map and mixer functions. Moderate Unreviewed
CVE-2024-45543 was published Apr 7, 2025
Memory corruption may occur while reading board data via IOCTL call when the WLAN driver copies... High Unreviewed
CVE-2025-21439 was published Apr 7, 2025
In vdec, there is a possible permission bypass due to improper input validation. This could lead... Moderate Unreviewed
CVE-2025-20657 was published Apr 7, 2025
In DA, there is a possible permission bypass due to a logic error. This could lead to local... Moderate Unreviewed
CVE-2025-20658 was published Apr 7, 2025
In wlan service, there is a possible out of bounds write due to an incorrect bounds check. This... Critical Unreviewed
CVE-2025-20654 was published Apr 7, 2025
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2025-20656 was published Apr 7, 2025
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful... Moderate Unreviewed
CVE-2024-58115 was published Apr 7, 2025
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful... Moderate Unreviewed
CVE-2024-58116 was published Apr 7, 2025
A vulnerability, which was classified as critical, has been found in qinguoyi TinyWebServer up to... Moderate Unreviewed
CVE-2025-3266 was published Apr 4, 2025
A vulnerability, which was classified as critical, has been found in Tenda RX3 16.03.13.11. This... High Unreviewed
CVE-2025-3259 was published Apr 4, 2025
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp... Moderate Unreviewed
CVE-2025-3196 was published Apr 4, 2025
A vulnerability classified as problematic was found in Tenda W18E 16.01.0.11. Affected by this... Moderate Unreviewed
CVE-2025-3203 was published Apr 4, 2025
A vulnerability classified as critical was found in code-projects Product Management System 1.0.... Moderate Unreviewed
CVE-2025-3166 was published Apr 3, 2025
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy... Critical Unreviewed
CVE-2025-22457 was published Apr 3, 2025
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. This issue... High Unreviewed
CVE-2025-3161 was published Apr 3, 2025
A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue... Moderate Unreviewed
CVE-2025-3136 was published Apr 3, 2025
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid VerticesPerRow value... Low Unreviewed
CVE-2025-3154 was published Apr 3, 2025
In the Linux kernel, the following vulnerability has been resolved: dm-flakey: Fix memory... High Unreviewed
CVE-2025-21966 was published Apr 1, 2025
In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix potential... High Unreviewed
CVE-2025-21919 was published Apr 1, 2025
In the Linux kernel, the following vulnerability has been resolved: slimbus: messaging: Free... High Unreviewed
CVE-2025-21914 was published Apr 1, 2025
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential... High Unreviewed
CVE-2025-21927 was published Apr 1, 2025
Memory safety bugs present in Firefox 136 and Thunderbird 136. Some of these bugs showed evidence... High Unreviewed
CVE-2025-3034 was published Apr 1, 2025
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory... High Unreviewed
CVE-2025-1660 was published Apr 1, 2025
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2025-30464 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database