Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

104,444 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: bpf: Reject struct_ops... High Unreviewed
CVE-2024-58060 was published Mar 6, 2025
Improper Validation of Syntactic Correctness of Input vulnerability in Finder Fire Safety Finder... High Unreviewed
CVE-2024-12146 was published Mar 6, 2025
A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232.... High Unreviewed
CVE-2024-42844 was published Mar 6, 2025
Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in... High Unreviewed
CVE-2024-13892 was published Mar 6, 2025
Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in... High Unreviewed
CVE-2024-13893 was published Mar 6, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in ExtremePACS Extreme XDS allows... High Unreviewed
CVE-2024-7872 was published Mar 6, 2025
Out-of-bounds write in parsing bmp image in Samsung Notes prior to version 4.4.26.71 allows local... High Unreviewed
CVE-2025-20931 was published Mar 6, 2025
Incorrect access permission of a specific service issue exists in RemoteView Agent (for Windows)... High Unreviewed
CVE-2025-22447 was published Mar 6, 2025
Incorrect access permission of a specific folder issue exists in RemoteView Agent (for Windows)... High Unreviewed
CVE-2025-24864 was published Mar 6, 2025
Improper access control in SecSettingsIntelligence prior to SMR Mar-2025 Release 1 allows local... High Unreviewed
CVE-2025-20903 was published Mar 6, 2025
Out-of-bounds write in parsing jpeg image in Samsung Notes prior to version 4.4.26.71 allows... High Unreviewed
CVE-2025-20929 was published Mar 6, 2025
In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for... High Unreviewed
CVE-2022-49411 was published Mar 6, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/msm/disp/dpu1: set vbif... High Unreviewed
CVE-2022-49489 was published Mar 6, 2025
In the Linux kernel, the following vulnerability has been resolved: block: disable the elevator... High Unreviewed
CVE-2022-49694 was published Mar 6, 2025
Emissary May Use a Broken or Risky Cryptographic Algorithm High
CVE-2025-27508 was published for gov.nsa.emissary:emissary (Maven) Mar 5, 2025
0dd moweiyang0214
Peppermint Ticket Management 0.4.6 is vulnerable to Incorrect Access Control. A regular... High Unreviewed
CVE-2024-31525 was published Mar 5, 2025
Spacy-LLM Server-Side Template Injection (SSTI) vulnerability High
CVE-2025-25362 was published for spacy-llm (pip) Mar 5, 2025
Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an... High Unreviewed
CVE-2025-2003 was published Mar 5, 2025
A misconfiguration in Alphion ASEE-1443 Firmware v0.4.H.00.02.15 defines a previously... High Unreviewed
CVE-2024-57174 was published Mar 5, 2025
Cross Site Request Forgery (CSRF) vulnerability exists in the 'pvmsg.php?action=add_message',... High Unreviewed
CVE-2024-51144 was published Mar 5, 2025
dmlc/dgl Vulnerable to Remote Code Execution by Pickle Deserialization via rpc.recv_request() High
GHSA-3x5x-fw77-g54c was published for dgl (pip) Mar 5, 2025
OpenDJ Denial of Service (DoS) using alias loop High
CVE-2025-27497 was published for org.openidentityplatform.opendj:opendj-server-legacy (Maven) Mar 5, 2025
hannes96
Path traversal may allow remote code execution using privileged account (requires device admin... High Unreviewed
CVE-2025-24494 was published Mar 5, 2025
A vulnerability in the interprocess communication (IPC) channel of Cisco Secure Client for... High Unreviewed
CVE-2025-20206 was published Mar 5, 2025
Sysax Multi Server 6.99 is vulnerable to a denial of service (DoS) condition when processing... High Unreviewed
CVE-2024-53458 was published Mar 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database