Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

919 advisories

Loading
An issue has been discovered in GitLab CE/EE affecting all versions from 8.15 before 18.1.5, 18.2... Moderate Unreviewed
CVE-2025-3601 was published Aug 27, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 14.1 before 18.1.5, 18.2... Moderate Unreviewed
CVE-2025-4225 was published Aug 27, 2025
IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of... Moderate Unreviewed
CVE-2025-36047 was published Aug 14, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 11.6 before 18.0.6, 18.1... Moderate Unreviewed
CVE-2025-2614 was published Aug 13, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 8.14 before 18.0.6, 18.1... Moderate Unreviewed
CVE-2025-1477 was published Aug 13, 2025
An HTTP/2 implementation flaw allows a denial-of-service (DoS) that uses malformed HTTP/2 control... Moderate Unreviewed
CVE-2025-54500 was published Aug 13, 2025
Allocation of resources without limits or throttling in Windows DirectX allows an authorized... Moderate Unreviewed
CVE-2025-50172 was published Aug 12, 2025
A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V10.0), SIPROTEC... Low Unreviewed
CVE-2025-40570 was published Aug 12, 2025
LiteSpeed QUIC (LSQUIC) Library before 4.3.1 has an lsquic_engine_packet_in memory leak. Moderate Unreviewed
CVE-2025-54939 was published Aug 1, 2025
An unauthenticated remote attacker can cause a Denial of Service by sending a large number of... High Unreviewed
CVE-2025-2813 was published Jul 31, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6,... Moderate Unreviewed
CVE-2025-43211 was published Jul 30, 2025
Allocation of Resources Without Limits or Throttling vulnerability in Kron Technologies Kron PAM... Moderate Unreviewed
CVE-2025-5253 was published Jul 25, 2025
IBM Security QRadar Network Threat Analytics 1.0.0 through 1.3.1 could allow a privileged user to... Moderate Unreviewed
CVE-2024-38335 was published Jul 22, 2025
In Netgear RAX30 V1.0.10.94_3, the USERLIMIT_GLOBAL option is set to 0 in multiple bftpd-related... High Unreviewed
CVE-2025-44652 was published Jul 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-53032 was published Jul 15, 2025
Successful exploitation of the vulnerability could allow an attacker to cause repeated reboots,... Moderate Unreviewed
CVE-2025-48467 was published Jun 26, 2025
Successful exploitation of the vulnerability could allow an attacker to consume all available... Moderate Unreviewed
CVE-2025-48462 was published Jun 26, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 17.11.5, 18... Moderate Unreviewed
CVE-2025-3279 was published Jun 26, 2025
A denial-of-service vulnerability due to improper prioritization of network traffic over... High Unreviewed
CVE-2025-2403 was published Jun 24, 2025
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow a remote attacker to... High Unreviewed
CVE-2025-3221 was published Jun 23, 2025
The Yealink YMCS RPS API before 2025-05-26 lacks rate limiting, potentially enabling information... Moderate Unreviewed
CVE-2025-52917 was published Jun 22, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 2.1.0 before 17.10.8, 17... Moderate Unreviewed
CVE-2025-5996 was published Jun 12, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 8.13 before 17.10.7, 17... Moderate Unreviewed
CVE-2025-1478 was published Jun 12, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17... Moderate Unreviewed
CVE-2025-1516 was published Jun 12, 2025
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and... High Unreviewed
CVE-2025-25032 was published Jun 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database