Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,448 advisories

Loading
Memory overflow vulnerability leading to unintended control flow and Denial of Service in... Critical Unreviewed
CVE-2025-6543 was published Jun 26, 2025
Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in... Critical Unreviewed
CVE-2025-7775 was published Aug 26, 2025
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22991 was published May 24, 2022
An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer... Critical Unreviewed
CVE-2020-29557 was published May 24, 2022
A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE... Critical Unreviewed
CVE-2018-0151 was published May 13, 2022
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session... Critical Unreviewed
CVE-2018-7445 was published May 14, 2022
An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By... Critical Unreviewed
CVE-2018-6789 was published May 13, 2022
The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a... Critical Unreviewed
CVE-2017-12240 was published May 13, 2022
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when... Critical Unreviewed
CVE-2016-10174 was published May 17, 2022
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service ... Critical Unreviewed
CVE-2020-5135 was published May 24, 2022
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via... Critical Unreviewed
CVE-2019-3568 was published May 24, 2022
NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5... Critical Unreviewed
CVE-2017-6862 was published May 17, 2022
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet... Critical Unreviewed
CVE-2017-7269 was published May 14, 2022
fastping.c in MRLG (aka Multi-Router Looking Glass) before 5.5.0 allows remote attackers to cause... Critical Unreviewed
CVE-2014-3931 was published May 17, 2022
A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within... Critical Unreviewed
CVE-2025-4638 was published May 14, 2025
Memory safety bug present in Firefox 143 and Thunderbird 143. This bug showed evidence of memory... Critical Unreviewed
CVE-2025-11721 was published Oct 14, 2025
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of... Critical Unreviewed
CVE-2025-21483 was published Sep 24, 2025
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26, Safari 26,... Critical Unreviewed
CVE-2025-43343 was published Sep 16, 2025
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input... Critical Unreviewed
CVE-2024-45169 was published Aug 22, 2024
In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This... Critical Unreviewed
CVE-2022-38692 was published Sep 2, 2025
In FDL1, there is a possible missing payload size check. This could lead to memory buffer... Critical Unreviewed
CVE-2022-38693 was published Sep 2, 2025
In BootRom, there's a possible missing payload size check. This could lead to memory buffer... Critical Unreviewed
CVE-2022-38696 was published Sep 2, 2025
In mupen64plus v2.6.0 there is an array overflow vulnerability in the write_rdram_regs and... Critical Unreviewed
CVE-2025-29366 was published Aug 22, 2025
An attacker was able to perform memory corruption in the GMP process which processes encrypted... Critical Unreviewed
CVE-2025-9179 was published Aug 19, 2025
Memory safety bugs present in Firefox 141 and Thunderbird 141. Some of these bugs showed evidence... Critical Unreviewed
CVE-2025-9187 was published Aug 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database