Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

7,043 advisories

Loading
A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing... Moderate Unreviewed
CVE-2025-14104 was published Dec 5, 2025
An out-of-bounds read vulnerability exists in the EMF functionality of PDF-XChange Co. Ltd PDF... Moderate Unreviewed
CVE-2025-58113 was published Dec 2, 2025
Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'DownloadFile'... High Unreviewed
CVE-2025-11789 was published Dec 2, 2025
In display, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2025-20776 was published Dec 2, 2025
In display, there is a possible out of bounds read due to a missing bounds check. This could lead... High Unreviewed
CVE-2025-20768 was published Dec 2, 2025
In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2025-20759 was published Dec 2, 2025
Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical... Moderate Unreviewed
CVE-2025-58476 was published Dec 2, 2025
Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote... Moderate Unreviewed
CVE-2025-58479 was published Dec 2, 2025
FeehiCMS fails to enforce server-side immutability Moderate
CVE-2025-63523 was published for feehi/feehicms (Composer) Dec 1, 2025
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the... Moderate Unreviewed
CVE-2025-41739 was published Dec 1, 2025
LZ4 Java Compression has Out-of-bounds memory operations which can cause DoS High
CVE-2025-12183 was published for at.yawk.lz4:lz4-java (Maven) Nov 28, 2025
Marcono1234 pjfanning
Credited to Marcono1234 and pjfanning
Vulnerability of accessing invalid memory in the component driver module. Impact: Successful... Moderate Unreviewed
CVE-2025-58314 was published Nov 28, 2025
Out-of-bounds Read vulnerability in ASR1903、ASR3901 in ASR Lapwing_Linux on Linux (nr_fw modules)... High Unreviewed
CVE-2025-13735 was published Nov 26, 2025
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges... Critical Unreviewed
CVE-2025-64656 was published Nov 26, 2025
The fetch function in file thinkphp\library\think\Template.php in ThinkPHP 5.0.24 allows... High Unreviewed
CVE-2025-63889 was published Nov 20, 2025
golang.org/x/crypto/ssh/agent vulnerable to panic if message is malformed due to out of bounds read Moderate
CVE-2025-47914 was published for golang.org/x/crypto (Go) Nov 19, 2025
leonklingele
Credited to leonklingele
Out-of-bounds Read in Shelly Pro 3EM (before v1.4.4) allows Overread Buffers. High Unreviewed
CVE-2025-12056 was published Nov 19, 2025
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V29... High Unreviewed
CVE-2025-40936 was published Nov 17, 2025
Out of bounds read in V8 in Google Chrome prior to 133.0.6943.141 allowed a remote attacker to... High Unreviewed
CVE-2025-9479 was published Nov 14, 2025
Inappropriate implementation in Dawn in Google Chrome on Mac prior to 130.0.6723.92 allowed a... Moderate Unreviewed
CVE-2024-11920 was published Nov 14, 2025
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2025-43205 was published Nov 12, 2025
Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2025-61845 was published Nov 11, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by an out-of-bounds read... High Unreviewed
CVE-2025-61833 was published Nov 11, 2025
Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2025-61844 was published Nov 11, 2025
Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2025-61840 was published Nov 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database