Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,667
Maven
5,000+
npm
4,295
NuGet
760
pip
4,073
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

147 advisories

Loading
IBM EntireX 11.1 could allow a local user to cause a denial of service due to an unhandled error... Moderate Unreviewed
CVE-2025-0158 was published Feb 6, 2025
Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the... Moderate Unreviewed
CVE-2024-13417 was published Feb 6, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20176 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20173 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS... High Unreviewed
CVE-2025-20172 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20171 was published Feb 5, 2025
Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to... Moderate Unreviewed
CVE-2024-56946 was published Feb 3, 2025
In network HW, there is a possible system hang due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20637 was published Feb 3, 2025
Go Ethereum vulnerable to DoS via malicious p2p message Moderate
CVE-2025-24883 was published for github.com/ethereum/go-ethereum (Go) Jan 30, 2025
iam-ned
Credited to iam-ned
Unexpected server crash in database driver in M-Files Server before 25.1.14445.5 allows a highly... Moderate Unreviewed
CVE-2025-0648 was published Jan 23, 2025
Null pointer dereference vulnerability in the image decoding module Impact: Successful... High Unreviewed
CVE-2024-54106 was published Dec 12, 2024
rPGP Panics on Malformed Untrusted Input High
CVE-2024-53856 was published for pgp (Rust) Dec 5, 2024
invd hko-s
dignifiedquire link2xt
Credited to invd, hko-s, dignifiedquire, and link2xt
In wlan driver, there is a possible client disconnection due to improper handling of exceptional... High Unreviewed
CVE-2024-20137 was published Dec 2, 2024
SurrealDB has an Uncaught Exception Sorting Tables by Random Order Moderate
GHSA-m52v-24p8-654f was published for surrealdb (Rust) Nov 22, 2024
finnbear extrawurst
Credited to finnbear and extrawurst
SurrealDB has an Uncaught Exception Handling Nonexistent Role Moderate
GHSA-jc55-246c-r88f was published for surrealdb (Rust) Nov 22, 2024
garyhai
Credited to garyhai
SurrealDB has an Uncaught Exception in Function Generating Random Time Moderate
GHSA-h4f5-h82v-5w4r was published for surrealdb (Rust) Nov 22, 2024
Uncaught exception for some Intel(R) CST software before version 8.7.10803 may allow an... Moderate Unreviewed
CVE-2024-29076 was published Nov 13, 2024
Vulnerability of message types not being verified in the advanced messaging modul Impact:... Moderate Unreviewed
CVE-2024-51518 was published Nov 5, 2024
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software... Moderate Unreviewed
CVE-2023-26586 was published Oct 29, 2024
SurrealDB has an Uncaught Exception Handling Parsing Errors on Empty Strings High
GHSA-qjrv-v6qp-x99x was published for surrealdb (Rust) Oct 8, 2024
Denial of Service in TYPO3 Bookmark Toolbar Low
CVE-2024-34537 was published for typo3/cms-backend (Composer) Oct 8, 2024
ohader bnf
Eichner
Credited to ohader, bnf, and Eichner
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated... Moderate Unreviewed
CVE-2024-33848 was published Sep 16, 2024
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects High
CVE-2024-43367 was published for boa_engine (Rust) Aug 14, 2024
ctcpip arai-a
jedel1043 jasonwilliams nekevss
Credited to ctcpip, arai-a, jedel1043, jasonwilliams, and nekevss
Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of... Critical Unreviewed
CVE-2024-42037 was published Aug 8, 2024
panic on parsing crafted phonenumber inputs Critical
CVE-2024-39697 was published for phonenumber (Rust) Jul 9, 2024
rubdos
Credited to rubdos
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database