Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
47
Go
3,340
Maven
5,000+
npm
5,000+
NuGet
881
pip
4,549
Pub
12
RubyGems
1,012
Rust
1,202
Swift
51
Unreviewed advisories
All unreviewed
5,000+

302 advisories

Loading
A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that... High Unreviewed
CVE-2026-0940 was published Mar 11, 2026
An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for... High Unreviewed
CVE-2025-66363 was published Mar 3, 2026
filippo.io/edwards25519 MultiScalarMult produces invalid results or undefined behavior if receiver is not the identity Low
CVE-2026-26958 was published for filippo.io/edwards25519 (Go) Feb 18, 2026
WeebDataHoarder Credited to WeebDataHoarder and shaharcohen1 shaharcohen1 shaharcohen1
Missing Checks in certain functions related to RMP initialization can allow a local admin... Low Unreviewed
CVE-2025-48509 was published Feb 10, 2026
Improper initialization for some ESXi kernel mode driver for the Intel(R) Ethernet 800-Series... Low Unreviewed
CVE-2025-25058 was published Feb 10, 2026
In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU... Low Unreviewed
CVE-2026-23553 was published Jan 28, 2026
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of... High Unreviewed
CVE-2026-21913 was published Jan 15, 2026
A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function... Moderate Unreviewed
CVE-2025-14955 was published Dec 19, 2025
Improper resource management in firmware of some Solidigm DC Products may allow an attacker with... Moderate Unreviewed
CVE-2025-12902 was published Nov 7, 2025
Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor... Low Unreviewed
CVE-2024-36331 was published Sep 6, 2025
ArrayQueue's push_front is not panic-safe Moderate
GHSA-xqjr-wfx3-gmxv was published for array-queue (Rust) Sep 2, 2025
IdMap from_iter may lead to uninitialized memory being freed on drop Moderate
GHSA-qq4c-hm99-979m was published for id-map (Rust) Aug 18, 2025
Improper initialization in the Linux kernel-mode driver for some Intel(R) I350 Series Ethernet... Low Unreviewed
CVE-2025-24511 was published Aug 12, 2025
AMI APTIOV contains a vulnerability in BIOS where a user may cause “Improper Initialization” by... Moderate Unreviewed
CVE-2025-22834 was published Aug 12, 2025
The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40... Moderate Unreviewed
CVE-2025-5745 was published Jun 5, 2025
The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39... Moderate Unreviewed
CVE-2025-5702 was published Jun 5, 2025
Improper initialization in the UEFI firmware for the Intel(R) Server D50DNP and M50FCP boards may... Moderate Unreviewed
CVE-2025-21100 was published May 13, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog Credited to warriordog
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up... Moderate Unreviewed
CVE-2025-21906 was published Apr 1, 2025
A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by... Low Unreviewed
CVE-2025-2149 was published Mar 10, 2025
An issue in Bento4 v1.6.0-641 allows an attacker to trigger a segmentation fault via Ap4Atom.cpp,... Moderate Unreviewed
CVE-2025-25947 was published Feb 20, 2025
Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may... Moderate Unreviewed
CVE-2024-31157 was published Feb 13, 2025
Improper initialization in the firmware for some Intel(R) AMT and Intel(R) Standard Manageability... Moderate Unreviewed
CVE-2024-26021 was published Feb 13, 2025
Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service Moderate
CVE-2024-12289 was published for github.com/hashicorp/boundary (Go) Dec 13, 2024
An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-11158 was published Dec 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database