Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,831
Erlang
36
GitHub Actions
33
Go
2,451
Maven
5,000+
npm
4,073
NuGet
723
pip
3,868
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+

569 advisories

Loading
An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below,... Moderate Unreviewed
CVE-2025-25248 was published Aug 12, 2025
Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an... Moderate Unreviewed
CVE-2025-50166 was published Aug 12, 2025
EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by... Moderate Unreviewed
CVE-2024-38805 was published Aug 12, 2025
An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through... Moderate Unreviewed
CVE-2025-7458 was published Jul 29, 2025
Apache Tomcat Catalina is vulnerable to DoS attack through bypassing of size limits Moderate
CVE-2025-52520 was published for org.apache.tomcat:tomcat-catalina (Maven) Jul 10, 2025
Vulnerability of insufficient data length verification in the partition module. Impact:... Moderate Unreviewed
CVE-2025-54631 was published Aug 6, 2025
russh is missing overflow checks during channel windows adjust Moderate
CVE-2025-54804 was published for russh (Rust) Aug 4, 2025
onjonjo
An integer overflow can be triggered in SQLite’s `concat_ws()` function. The resulting, truncated... Moderate Unreviewed
CVE-2025-3277 was published Apr 14, 2025
There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(),... Moderate Unreviewed
CVE-2025-0838 was published Feb 21, 2025
A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client... Moderate Unreviewed
CVE-2025-47712 was published Jun 9, 2025
transpose: Buffer overflow due to integer overflow Moderate
CVE-2023-53156 was published for transpose (Rust) Apr 5, 2024
Duplicate Advisory: transpose: Buffer overflow due to integer overflow Moderate
GHSA-p444-p2rm-hvrw was published for transpose (Rust) Jul 27, 2025 withdrawn
A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an... Moderate Unreviewed
CVE-2025-5449 was published Jul 25, 2025
Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20,... Moderate Unreviewed
CVE-2014-9192 was published May 14, 2022
ping in iputils through 20240905 allows a denial of service (application error or incorrect data... Moderate Unreviewed
CVE-2025-47268 was published May 5, 2025
There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc()... Moderate Unreviewed
CVE-2024-5197 was published Jun 3, 2024
Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to... Moderate Unreviewed
CVE-2024-34663 was published Oct 8, 2024
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent... Moderate Unreviewed
CVE-2025-50404 was published Jul 1, 2025
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not... Moderate Unreviewed
CVE-2025-49180 was published Jun 17, 2025
A flaw was found in the Big Requests extension. The request length is multiplied by 4 before... Moderate Unreviewed
CVE-2025-49176 was published Jun 17, 2025
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does... Moderate Unreviewed
CVE-2025-49179 was published Jun 17, 2025
CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c... Moderate Unreviewed
CVE-2025-48172 was published Jul 4, 2025
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka... Moderate Unreviewed
CVE-2025-40907 was published May 16, 2025
A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results... Moderate Unreviewed
CVE-2023-28908 was published Jun 28, 2025
A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been... Moderate Unreviewed
CVE-2025-5001 was published May 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database