Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,814
Erlang
36
GitHub Actions
32
Go
2,399
Maven
5,000+
npm
4,040
NuGet
722
pip
3,829
Pub
12
RubyGems
932
Rust
1,002
Swift
38
Unreviewed advisories
All unreviewed
5,000+

109,945 advisories

Loading
The vulnerability was identified in the code developed specifically for Lenovo. Please visit ... High Unreviewed
CVE-2025-4421 was published Jul 30, 2025
The vulnerability was identified in the code developed specifically for Lenovo. Please visit ... High Unreviewed
CVE-2025-4422 was published Jul 30, 2025
Tesla Wall Connector Content-Length Header Improper Input Validation Remote Code Execution... High Unreviewed
CVE-2025-8320 was published Jul 30, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-0712 was published Jul 30, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-25011 was published Jul 30, 2025
The vulnerability was identified in the code developed specifically for Lenovo. Please visit ... High Unreviewed
CVE-2025-4425 was published Jul 30, 2025
The vulnerability was identified in the code developed specifically for Lenovo. Please visit ... High Unreviewed
CVE-2025-4423 was published Jul 30, 2025
A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI... High Unreviewed
CVE-2025-7848 was published Jul 30, 2025
A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that... High Unreviewed
CVE-2025-7361 was published Jul 30, 2025
A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists... High Unreviewed
CVE-2025-7849 was published Jul 30, 2025
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in... High Unreviewed
CVE-2025-33092 was published Jul 29, 2025
SQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute... High Unreviewed
CVE-2025-45346 was published Jul 29, 2025
An issue was discovered in Couchbase Sync Gateway before 3.2.6. In sgcollect_info_options.log and... High Unreviewed
CVE-2025-52490 was published Jul 29, 2025
NanoMQ v0.17.9 was discovered to contain a heap use-after-free vulnerability via the component... High Unreviewed
CVE-2024-42651 was published Jul 29, 2025
An access control issue in NanoMQ v0.21.10 allows attackers to bypass security restrictions and... High Unreviewed
CVE-2024-42655 was published Jul 29, 2025
Bugsink path traversal via event_id in ingestion High
CVE-2025-54433 was published for bugsink (pip) Jul 29, 2025
A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out... High Unreviewed
CVE-2025-7675 was published Jul 29, 2025
A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out... High Unreviewed
CVE-2025-7497 was published Jul 29, 2025
A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out... High Unreviewed
CVE-2025-6637 was published Jul 29, 2025
A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out... High Unreviewed
CVE-2025-6631 was published Jul 29, 2025
A maliciously crafted 3DM file, when linked or imported into certain Autodesk products, can force... High Unreviewed
CVE-2025-5043 was published Jul 29, 2025
A maliciously crafted PRT file, when linked or imported into certain Autodesk products, can force... High Unreviewed
CVE-2025-6635 was published Jul 29, 2025
A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Use... High Unreviewed
CVE-2025-6636 was published Jul 29, 2025
A maliciously crafted X_T file, when parsed through certain Autodesk products, can force a Memory... High Unreviewed
CVE-2025-5038 was published Jul 29, 2025
SQL Injection affecting the Archiver role. High Unreviewed
CVE-2025-2928 was published Jul 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database