GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

102 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Concert 1.0.0 through 2.0.0 could allow a local user with specific permission to obtain... Moderate Unreviewed

CVE-2025-36158 was published Nov 21, 2025

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an... Moderate Unreviewed

CVE-2025-33096 was published Oct 12, 2025

Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply... Moderate Unreviewed

CVE-2025-43718 was published Oct 1, 2025

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a... Moderate Unreviewed

CVE-2025-9714 was published Sep 10, 2025

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack... Moderate Unreviewed

CVE-2025-39704 was published Sep 5, 2025

Uncontrolled recursion for some TinyCBOR libraries maintained by Intel(R) before version 0.6.1... Moderate Unreviewed

CVE-2025-24302 was published Aug 12, 2025

Uncontrolled recursion for some TinyCBOR libraries maintained by Intel(R) before version 0.6.1... Moderate Unreviewed

CVE-2025-20025 was published Aug 12, 2025

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Fix crash... Moderate Unreviewed

CVE-2025-38493 was published Jul 28, 2025

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Check... Moderate Unreviewed

CVE-2025-38315 was published Jul 10, 2025

In the Linux kernel, the following vulnerability has been resolved: powerpc/perf: Optimize... Moderate Unreviewed

CVE-2022-50118 was published Jun 18, 2025

In the Linux kernel, the following vulnerability has been resolved: fbdev: omapfb: Add 'plane'... Moderate Unreviewed

CVE-2025-37851 was published May 9, 2025

In the Linux kernel, the following vulnerability has been resolved: perf: Improve missing... Moderate Unreviewed

CVE-2022-49782 was published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Check for any... Moderate Unreviewed

CVE-2023-52986 was published Mar 27, 2025

An issue was discovered in Datalust Seq before 2024.3.13545. An insecure default parsing depth... Moderate Unreviewed

CVE-2024-58102 was published Mar 11, 2025

cpdf through 2.8 allows stack consumption via a crafted PDF document. Moderate Unreviewed

CVE-2024-54731 was published Jan 8, 2025

In the Linux kernel, the following vulnerability has been resolved: afs: Fix lock recursion ... Moderate Unreviewed

CVE-2024-53090 was published Nov 21, 2024

In the Linux kernel, the following vulnerability has been resolved: vsock: fix recursive -... Moderate Unreviewed

CVE-2024-44996 was published Sep 4, 2024

In the Linux kernel, the following vulnerability has been resolved: riscv: VMAP_STACK overflow... Moderate Unreviewed

CVE-2023-52761 was published May 21, 2024

An issue in the anchors subparser of Showdownjs versions <= 2.1.0 could allow a remote attacker... Moderate Unreviewed

CVE-2024-1899 was published Feb 26, 2024

MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push... Moderate Unreviewed

CVE-2023-31794 was published Oct 31, 2023

An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02. Moderate Unreviewed

CVE-2022-48545 was published Aug 22, 2023

In Xpdf 4.04 (and earlier), a PDF object loop in the embedded file tree leads to infinite... Moderate Unreviewed

CVE-2023-2664 was published Jul 6, 2023

In Xpdf 4.04 (and earlier), a PDF object loop in the page label tree leads to infinite recursion... Moderate Unreviewed

CVE-2023-2663 was published Jul 6, 2023

An issue was discovered in the Linux kernel before 5.8. lib/nlattr.c allows attackers to cause a... Moderate Unreviewed

CVE-2020-36691 was published Mar 24, 2023

In dotCMS 5.x-22.06, it is possible to call the TempResource multiple times, each time requesting... Moderate Unreviewed

CVE-2022-37034 was published Feb 2, 2023

Previous1…5 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

102 advisories