Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,362
Erlang
33
GitHub Actions
22
Go
2,133
Maven
5,000+
npm
3,797
NuGet
686
pip
3,473
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,196 advisories

Loading
libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in... Low Unreviewed
CVE-2025-27113 was published Feb 19, 2025
FFmpeg git master before commit fd1772 was discovered to contain a NULL pointer dereference via... Moderate Unreviewed
CVE-2025-25471 was published Feb 19, 2025
A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows... Moderate Unreviewed
CVE-2025-25475 was published Feb 19, 2025
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2025-22921 was published Feb 19, 2025
An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry input plugin is running and... High Unreviewed
CVE-2024-50609 was published Feb 18, 2025
An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remote Write input plugin is... High Unreviewed
CVE-2024-50608 was published Feb 18, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A... Moderate Unreviewed
CVE-2024-37602 was published Feb 14, 2025
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In... High Unreviewed
CVE-2023-34400 was published Feb 14, 2025
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB.... High Unreviewed
CVE-2023-34398 was published Feb 14, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The absence of a null... High Unreviewed
CVE-2024-46922 was published Feb 13, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. The absence of a... High Unreviewed
CVE-2024-46923 was published Feb 13, 2025
NULL pointer dereference in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for... High Unreviewed
CVE-2024-39356 was published Feb 13, 2025
NULL pointer dereference for some Intel(R) MLC software before version v3.11b may allow an... Moderate Unreviewed
CVE-2024-32941 was published Feb 13, 2025
In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-uart... Moderate Unreviewed
CVE-2025-21695 was published Feb 12, 2025
Substance3D - Stager versions 3.1.0 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed
CVE-2025-21155 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed
CVE-2025-21125 was published Feb 11, 2025
In the Linux kernel, the following vulnerability has been resolved: platform/x86: lenovo-yoga... Moderate Unreviewed
CVE-2025-21685 was published Feb 9, 2025
NULL pointer dereference vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and... Moderate Unreviewed
CVE-2025-24483 was published Feb 6, 2025
When SIP session Application Level Gateway mode (ALG) profile with Passthru Mode enabled and SIP... High Unreviewed
CVE-2025-20045 was published Feb 5, 2025
wasmvm: Malicious smart contract can crash the chain Moderate
GHSA-23qp-3c2m-xx6w was published for github.com/CosmWasm/wasmvm (Go) Feb 4, 2025
In macrozheng mall-tiny 1.0.1, an attacker can send null data through the resource creation... Moderate Unreviewed
CVE-2024-57435 was published Feb 1, 2025
In the Linux kernel, the following vulnerability has been resolved: net: fec: handle... Moderate Unreviewed
CVE-2025-21676 was published Jan 31, 2025
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clear port select... Moderate Unreviewed
CVE-2025-21675 was published Jan 31, 2025
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always... Moderate Unreviewed
CVE-2025-21682 was published Jan 31, 2025
In the Linux kernel, the following vulnerability has been resolved: vsock: prevent null-ptr... Moderate Unreviewed
CVE-2025-21666 was published Jan 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database