Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,888 advisories

Loading
In Eclipse OMR versions 0.2.0 to 0.4.0, some of the z/OS atoe print functions use a constant... High Unreviewed
CVE-2025-1471 was published Feb 21, 2025
A flaw was found in grub2. During the network boot process, when trying to search for the... High Unreviewed
CVE-2025-0624 was published Feb 19, 2025
Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially... High Unreviewed
CVE-2025-26508 was published Feb 14, 2025
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an... High Unreviewed
CVE-2025-26519 was published Feb 14, 2025
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB.... High Unreviewed
CVE-2023-34402 was published Feb 14, 2025
A heap-based memory vulnerability has been identified in the Postscript interpreter in various... High Unreviewed
CVE-2024-11345 was published Feb 13, 2025
A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the pskSecret... High Unreviewed
CVE-2025-25898 was published Feb 13, 2025
A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the... High Unreviewed
CVE-2025-25901 was published Feb 13, 2025
A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the 'ip' parameter... High Unreviewed
CVE-2025-25897 was published Feb 13, 2025
Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may... High Unreviewed
CVE-2024-31858 was published Feb 13, 2025
Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter... High Unreviewed
CVE-2024-36274 was published Feb 13, 2025
WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-1240 was published Feb 12, 2025
PDF-XChange Editor RTF File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-0903 was published Feb 11, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-0910 was published Feb 11, 2025
Mintty Sixel Image Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-1052 was published Feb 11, 2025
Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution... High Unreviewed
CVE-2024-12547 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-21121 was published Feb 11, 2025
Substance3D - Designer versions 14.0.2 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-21161 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-21157 was published Feb 11, 2025
When BIG-IP Advanced WAF/ASM Behavioral DoS (BADoS) TLS Signatures feature is configured,... High Unreviewed
CVE-2025-24326 was published Feb 5, 2025
In Ashlar-Vellum Cobalt versions prior to v12 SP2 Build (1204.200), the affected application... High Unreviewed
CVE-2023-39943 was published Feb 5, 2025
Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1... High Unreviewed
CVE-2025-20890 was published Feb 4, 2025
Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to... High Unreviewed
CVE-2025-20881 was published Feb 4, 2025
Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan... High Unreviewed
CVE-2025-20882 was published Feb 4, 2025
Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025... High Unreviewed
CVE-2025-20888 was published Feb 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database