Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,605
Maven
5,000+
npm
4,250
NuGet
756
pip
4,016
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

177 advisories

Loading
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8611 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8639 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8453 was published May 13, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8406 was published May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8405 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8120 was published May 13, 2022
A vulnerability was found in Tenda W12 3.0.0.6(3948). The impacted element is the function... High Unreviewed
CVE-2025-11550 was published Oct 9, 2025
When the BIG-IP system is configured as both a Security Assertion Markup Language (SAML) service... High Unreviewed
CVE-2025-47148 was published Oct 15, 2025
Undertow MadeYouReset HTTP/2 DDoS Vulnerability High
CVE-2025-9784 was published for io.undertow:undertow-core (Maven) Sep 2, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2... High Unreviewed
CVE-2025-58473 was published Sep 24, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2... High Unreviewed
CVE-2025-57882 was published Sep 24, 2025
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic.... High Unreviewed
CVE-2025-8175 was published Jul 26, 2025
Vulnerability in SK Hynix DDR5 on x86 allows a local attacker to trigger Rowhammer bit flips... High Unreviewed
CVE-2025-6202 was published Sep 15, 2025
Apache Tomcat Improper Resource Shutdown or Release vulnerability High
CVE-2025-48989 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Aug 13, 2025
snieguu
Credited to snieguu
A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall... High Unreviewed
CVE-2025-20127 was published Aug 14, 2025
A vulnerability has been found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This vulnerability affects... High Unreviewed
CVE-2025-8761 was published Aug 13, 2025
A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects... High Unreviewed
CVE-2025-5867 was published Jun 9, 2025
An Improper Resource Shutdown or Release vulnerability in the SIP ALG of Juniper Networks Junos... High Unreviewed
CVE-2025-52982 was published Jul 11, 2025
A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802.... High Unreviewed
CVE-2025-1103 was published Feb 7, 2025
A vulnerability has been found in H3C Magic R200G up to 100R002 and classified as problematic.... High Unreviewed
CVE-2025-4998 was published May 20, 2025
A vulnerability, which was classified as problematic, was found in H3C R2+ProG up to 200R004.... High Unreviewed
CVE-2025-4997 was published May 20, 2025
A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as problematic. Affected... High Unreviewed
CVE-2025-4867 was published May 18, 2025
A vulnerability classified as critical was found in D-Link DI-7003GV2 24.04.18D1 R(68125). This... High Unreviewed
CVE-2025-4749 was published May 16, 2025
Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products... High Unreviewed
CVE-2022-28887 was published Oct 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database