Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,942
NuGet
711
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,778 advisories

Loading
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-24247 was published Apr 1, 2025
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Critical Unreviewed
CVE-2025-24235 was published Apr 1, 2025
An uncontrolled format string issue was addressed with improved input validation. This issue is... Moderate Unreviewed
CVE-2025-24199 was published Apr 1, 2025
This issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4,... Critical Unreviewed
CVE-2025-24211 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, macOS... Critical Unreviewed
CVE-2025-24190 was published Apr 1, 2025
A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3.... Moderate Unreviewed
CVE-2025-3016 was published Mar 31, 2025
A flaw was found in the OpenShift Lightspeed Service, which is vulnerable to unauthenticated API... High Unreviewed
CVE-2025-2586 was published Mar 31, 2025
An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to... High Unreviewed
CVE-2025-29484 was published Mar 27, 2025
An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to... High Unreviewed
CVE-2025-29487 was published Mar 27, 2025
libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD... Moderate Unreviewed
CVE-2025-29490 was published Mar 27, 2025
A vulnerability was found in zhangyd-c OneBlog up to 2.3.9. It has been classified as problematic... Moderate Unreviewed
CVE-2025-2833 was published Mar 27, 2025
An authenticated attacker can compromise the availability of the device via the network Moderate Unreviewed
CVE-2025-2820 was published Mar 26, 2025
In NASA cFS (Core Flight System) Aquila, it is possible to put the onboard software in a state... High Unreviewed
CVE-2025-25374 was published Mar 25, 2025
: Uncontrolled Resource Consumption vulnerability in Wind River Systems VxWorks 7 on VxWorks... Moderate Unreviewed
CVE-2025-26500 was published Mar 22, 2025
Redlib allows a Denial of Service via DEFLATE Decompression Bomb in restore_preferences Form High
CVE-2025-30160 was published for redlib (Rust) Mar 21, 2025
Tokarak
Aim Uncontrolled Resource Consumption vulnerability High
CVE-2025-0189 was published for aim (pip) Mar 20, 2025
MLflow Uncontrolled Resource Consumption vulnerability Moderate
CVE-2025-0453 was published for mlflow (pip) Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app... High Unreviewed
CVE-2025-0187 was published Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of gaizhenbiao... Moderate Unreviewed
CVE-2025-0191 was published Mar 20, 2025
A vulnerability in danswer-ai/danswer version 0.9.0 allows for denial of service through memory... High Unreviewed
CVE-2025-0182 was published Mar 20, 2025
A vulnerability in parisneo/lollms-webui v13 arises from the server's handling of multipart... High Unreviewed
CVE-2025-1451 was published Mar 20, 2025
ZenML unauthenticated DoS via Multipart Boundry High
CVE-2024-9340 was published for zenml (pip) Mar 20, 2025
SuperAGI version v0.0.14 is vulnerable to an unauthenticated Denial of Service (DoS) attack. The... High Unreviewed
CVE-2024-9437 was published Mar 20, 2025
Open WebUI Unauthenticated Multipart Boundary Denial of Service (DoS) Vulnerability High
GHSA-5ccf-884p-4jjq was published for open-webui (npm) Mar 20, 2025
BentoML Denial of Service (DoS) via Multipart Boundary High
CVE-2024-9056 was published for bentoml (pip) Mar 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database