GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,874

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

937 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security issue exists within 432ES-IG3 Series A, which affects GuardLink® EtherNet/IP Interface... High Unreviewed

CVE-2025-9368 was published Dec 9, 2025

A low privileged remote attacker can use the ssh feature to execute commands directly after login... Moderate Unreviewed

CVE-2025-41693 was published Dec 9, 2025

A low privileged remote attacker can run the webshell with an empty command containing whitespace... Moderate Unreviewed

CVE-2025-41694 was published Dec 9, 2025

IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service... Moderate Unreviewed

CVE-2025-36140 was published Dec 9, 2025

In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service... High Unreviewed

CVE-2025-48631 was published Dec 8, 2025

In multiple locations, there is a possible permanent denial of service due to resource exhaustion... Moderate Unreviewed

CVE-2025-48569 was published Dec 8, 2025

In InputMethodInfo of InputMethodInfo.java, there is a possible permanent denial of service due... Moderate Unreviewed

CVE-2025-48603 was published Dec 8, 2025

In getComponentName of MediaButtonReceiverHolder.java, there is a possible desync in persistence... High Unreviewed

CVE-2025-48615 was published Dec 8, 2025

Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity... High Unreviewed

CVE-2025-12385 was published Dec 3, 2025

An issue in HCL Technologies Limited HCLTech GRAGON before v.7.6.0 allows a remote attacker to... Moderate Unreviewed

CVE-2025-63402 was published Dec 3, 2025

Interactive service agent in OpenVPN version 2.5.0 through 2.7_rc2 on Windows allows a local... Low Unreviewed

CVE-2025-13751 was published Dec 3, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.4.5,... High Unreviewed

CVE-2025-12571 was published Nov 26, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.4.5, 18... Moderate Unreviewed

CVE-2025-7449 was published Nov 26, 2025

Allocation of Resources Without Limits or Throttling vulnerability in Shelly Pro 4PM (before v1.6... High Unreviewed

CVE-2025-11243 was published Nov 19, 2025

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user... Moderate Unreviewed

CVE-2025-54320 was published Nov 18, 2025

EasyFlow GP developed by Digiwin has a Denial of service vulnerability, allowing unauthenticated... High Unreviewed

CVE-2025-13165 was published Nov 17, 2025

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through... Moderate Unreviewed

CVE-2025-59089 was published Nov 12, 2025

A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of... Moderate Unreviewed

CVE-2025-12748 was published Nov 11, 2025

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes... Moderate Unreviewed

CVE-2025-36008 was published Nov 7, 2025

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes... Moderate Unreviewed

CVE-2025-36136 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53413 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53410 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53409 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Low Unreviewed

CVE-2025-53411 was published Nov 7, 2025

An attacker that gains SSH access to an unprivileged account may be able to disrupt services ... Moderate Unreviewed

CVE-2025-59459 was published Oct 27, 2025

Previous1…38 Next

Previous 1 2 3 4 5 … 37 38 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

937 advisories