Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,884
Erlang
37
GitHub Actions
38
Go
2,546
Maven
5,000+
npm
4,207
NuGet
743
pip
3,979
Pub
12
RubyGems
947
Rust
1,034
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

977 advisories

Loading
A TCL Smart TV running a vulnerable UPnP/DLNA MediaRenderer implementation is affected by a... High Unreviewed
CVE-2025-55972 was published Oct 3, 2025
Uncontrolled Resource Consumption vulnerability in PlexTrac allows WebSocket DoS.This issue... High Unreviewed
CVE-2024-11835 was published Dec 13, 2024
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a... High Unreviewed
CVE-2023-5157 was published Sep 27, 2023
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of... High Unreviewed
CVE-2025-55551 was published Sep 25, 2025
Wavlink M86X3A_V240730 contains a buffer overflow vulnerability in the /cgi-bin/ExportAllSettings... High Unreviewed
CVE-2025-55847 was published Sep 26, 2025
An issue was discovered TensorFlow v2.18.0. A Denial of Service (DoS) occurs when padding is set... High Unreviewed
CVE-2025-55559 was published Sep 25, 2025
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of... High Unreviewed
CVE-2025-55560 was published Sep 25, 2025
An issue in O-RAN Near Realtime RIC ric-plt-submgr in the J-Release environment, allows remote... High Unreviewed
CVE-2025-57446 was published Sep 25, 2025
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d,... High Unreviewed
CVE-2025-55558 was published Sep 25, 2025
When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server,... High Unreviewed
CVE-2023-40542 was published Oct 10, 2023
The /api/comment endpoint in zhangyd-c OneBlog 2.3.9 contains a denial-of-service vulnerability. High Unreviewed
CVE-2025-56264 was published Sep 16, 2025
An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) Integer overflow and invalid... High Unreviewed
CVE-2025-57614 was published Sep 10, 2025
A vulnerability in the Address Resolution Protocol (ARP) implementation of Cisco IOS XR Software... High Unreviewed
CVE-2025-20340 was published Sep 10, 2025
An issue in Open5GS v2.7.2 and before allows a remote attacker to cause a denial of service via a... High Unreviewed
CVE-2025-52322 was published Sep 9, 2025
Assertion failure in function ngap_build_downlink_nas_transport in file src/amf/ngap-build.c, the... High Unreviewed
CVE-2025-52288 was published Sep 8, 2025
Adacore Ada Web Server (AWS) before 25.2 is vulnerable to a denial-of-service (DoS) condition due... High Unreviewed
CVE-2025-52494 was published Sep 8, 2025
Denial of service High Unreviewed
CVE-2025-36892 was published Sep 4, 2025
In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection... High Unreviewed
CVE-2025-3600 was published May 14, 2025
Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video... High Unreviewed
CVE-2025-55634 was published Aug 22, 2025
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was... High Unreviewed
CVE-2025-55631 was published Aug 22, 2025
'Denial-of-service due to out-of-memory in the Graphics: WebRender component.' This vulnerability... High Unreviewed
CVE-2025-9182 was published Aug 19, 2025
Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in... High Unreviewed
CVE-2025-55029 was published Aug 19, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the fw_ip... High Unreviewed
CVE-2025-55588 was published Aug 18, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the url... High Unreviewed
CVE-2025-55586 was published Aug 18, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the hostname... High Unreviewed
CVE-2025-55587 was published Aug 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database