Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,080
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,400 advisories

Loading
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called... Moderate Unreviewed
CVE-2022-3597 was published Oct 21, 2022
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows... Critical Unreviewed
CVE-2022-3570 was published Oct 21, 2022
Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM... High Unreviewed
CVE-2023-6858 was published Dec 19, 2023
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful... Moderate Unreviewed
CVE-2024-58115 was published Apr 7, 2025
When connection mirroring is configured on a virtual server, undisclosed requests can cause the... High Unreviewed
CVE-2025-41431 was published May 8, 2025
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory... High Unreviewed
CVE-2024-12178 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory... High Unreviewed
CVE-2024-12194 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12179 was published Dec 17, 2024
Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write... Moderate Unreviewed
CVE-2025-30102 was published May 8, 2025
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12669 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12670 was published Dec 17, 2024
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2022-43039 was published Oct 19, 2022
In TBD of TBD, there is a possible out of bounds write due to a missing bounds check. This could... High Unreviewed
CVE-2024-22012 was published Feb 7, 2024
IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1  could allow a local user to... High Unreviewed
CVE-2025-1330 was published May 9, 2025
IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to... High Unreviewed
CVE-2025-1329 was published May 9, 2025
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2022-43044 was published Oct 19, 2022
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2022-43045 was published Oct 19, 2022
Memory corruption while triggering commands in the PlayReady Trusted application. High Unreviewed
CVE-2024-49844 was published May 6, 2025
Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter. High Unreviewed
CVE-2025-21470 was published May 6, 2025
Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump... High Unreviewed
CVE-2024-45577 was published May 6, 2025
Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver... High Unreviewed
CVE-2024-45579 was published May 6, 2025
Memory corruption during the FRS UDS generation process. High Unreviewed
CVE-2024-49845 was published May 6, 2025
Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe... High Unreviewed
CVE-2022-33185 was published Oct 26, 2022
Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via... High Unreviewed
CVE-2022-3725 was published Oct 27, 2022
In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix packet... Moderate Unreviewed
CVE-2024-58099 was published Apr 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database