Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,203
Maven
5,000+
npm
3,852
NuGet
696
pip
3,637
Pub
12
RubyGems
911
Rust
913
Swift
38
Unreviewed advisories
All unreviewed
5,000+

10,336 advisories

Loading
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-22835 was published Mar 4, 2025
A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module... Moderate Unreviewed
CVE-2025-0678 was published Mar 3, 2025
A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's... Moderate Unreviewed
CVE-2025-0684 was published Mar 3, 2025
A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs... Moderate Unreviewed
CVE-2025-0686 was published Mar 3, 2025
A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module... Moderate Unreviewed
CVE-2025-0685 was published Mar 3, 2025
Paragon Partition Manager version 7.9.1 contains an arbitrary kernel memory write vulnerability... High Unreviewed
CVE-2025-0286 was published Mar 3, 2025
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the... Moderate Unreviewed
CVE-2024-45782 was published Mar 3, 2025
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the... Moderate Unreviewed
CVE-2024-45780 was published Mar 3, 2025
When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled... Moderate Unreviewed
CVE-2025-1125 was published Mar 3, 2025
Memory corruption while processing input message passed from FE driver. High Unreviewed
CVE-2024-53030 was published Mar 3, 2025
Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine. High Unreviewed
CVE-2024-53031 was published Mar 3, 2025
Memory corruption may occur during communication between primary and guest VM. High Unreviewed
CVE-2024-53022 was published Mar 3, 2025
In wlan AP FW, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed
CVE-2025-20646 was published Mar 3, 2025
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could... High Unreviewed
CVE-2025-20645 was published Mar 3, 2025
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2025-20650 was published Mar 3, 2025
Out-of-bounds Write vulnerability in radareorg radare2 allows heap-based buffer over-read or... Critical Unreviewed
CVE-2025-1744 was published Feb 28, 2025
In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out... High Unreviewed
CVE-2025-21785 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds... High Unreviewed
CVE-2025-21735 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: mailbox: th1520: Fix memory... High Unreviewed
CVE-2024-57983 was published Feb 27, 2025
An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice()... High Unreviewed
CVE-2025-26598 was published Feb 25, 2025
A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in... High Unreviewed
CVE-2025-26596 was published Feb 25, 2025
The read command is used to read the keyboard input from the user, while reads it keeps the input... Moderate Unreviewed
CVE-2025-0690 was published Feb 24, 2025
AugAssign evaluation order causing OOB write within the object in Vyper Low
CVE-2025-27105 was published for vyper (pip) Feb 21, 2025
A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this... High Unreviewed
CVE-2025-1538 was published Feb 21, 2025
In Eclipse OMR versions 0.2.0 to 0.4.0, some of the z/OS atoe print functions use a constant... High Unreviewed
CVE-2025-1471 was published Feb 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database