Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
55
GitHub Actions
50
Go
3,722
Maven
5,000+
npm
5,000+
NuGet
935
pip
4,946
Pub
13
RubyGems
1,055
Rust
1,338
Swift
54
Unreviewed advisories
All unreviewed
5,000+

201 advisories

Loading
Granian vulnerable to DoS via WSGI response header panic Moderate
CVE-2026-42545 was published for granian (pip) May 6, 2026
Z-Bra0 Credited to Z-Bra0
justhtml includes multiple security fixes Moderate
GHSA-c9vm-hv86-f23r was published for justhtml (pip) Apr 10, 2026
EmilStenstrom Credited to EmilStenstrom
@sveltejs/kit: Unvalidated redirect in handle hook causes Denial-of-Service Moderate
CVE-2026-40074 was published for @sveltejs/kit (npm) Apr 10, 2026
elliott-with-the-longest-name-on-github Credited to elliott-with-the-longest-name-on-github
psd-tools: Compression module has unguarded zlib decompression, missing dimension validation, and hardening gaps Moderate
CVE-2026-27809 was published for psd-tools (pip) Feb 26, 2026
Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future Moderate
CVE-2026-27195 was published for wasmtime (Rust) Feb 24, 2026
dicej Credited to dicej
Cube Core is vulnerable to Denial of Service (DoS) via crafted request Moderate
CVE-2026-25957 was published for @cubejs-backend/server-core (npm) Feb 10, 2026
ovr Credited to ovr
VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1... Moderate Unreviewed
CVE-2026-23762 was published Jan 22, 2026
RustFS gRPC GetMetrics deserialization panic enables remote DoS Moderate
CVE-2025-69255 was published for rustfs (Rust) Jan 7, 2026
max-r-b Credited to max-r-b and enitmar enitmar enitmar
Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the... Moderate Unreviewed
CVE-2025-27465 was published Jul 16, 2025
A vulnerability has been identified in RUGGEDCOM i800 (All versions), RUGGEDCOM i801 (All... Moderate Unreviewed
CVE-2025-41222 was published Jul 8, 2025
Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation. ACL are... Moderate Unreviewed
CVE-2025-4649 was published May 13, 2025
An Improper Handling of Exceptional Conditions vulnerability in routing protocol daemon (rpd) of... Moderate Unreviewed
CVE-2025-30652 was published Apr 9, 2025
Improper handling of alternate encoding occurs when Elastic Defend on Windows systems attempts to... Moderate Unreviewed
CVE-2024-37284 was published Jan 21, 2025
Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and... Moderate Unreviewed
CVE-2024-11863 was published Jan 14, 2025
An Improper Handling of Exceptional Conditions vulnerability in the command-line processing of... Moderate Unreviewed
CVE-2025-21596 was published Jan 9, 2025
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41886 was published Dec 24, 2024
A security issue exists in Vertex Gemini API for customers using VPC-SC. By utilizing a custom... Moderate Unreviewed
CVE-2024-12236 was published Dec 10, 2024
Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges Moderate
CVE-2024-52529 was published for github.com/cilium/cilium (Go) Nov 25, 2024
A potential security vulnerability has been identified in the HPE NonStop DISK UTIL (T9208)... Moderate Unreviewed
CVE-2024-51766 was published Nov 22, 2024
In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: prevent the... Moderate Unreviewed
CVE-2024-53063 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory... Moderate Unreviewed
CVE-2024-50202 was published Nov 8, 2024
In the Linux kernel, the following vulnerability has been resolved: remoteproc: k3-r5: Fix error... Moderate Unreviewed
CVE-2024-50176 was published Nov 8, 2024
loona-hpack Panic Vulnerability Moderate
CVE-2024-51502 was published for loona-hpack (Rust) Nov 4, 2024
In the Linux kernel, the following vulnerability has been resolved: static_call: Handle module... Moderate Unreviewed
CVE-2024-50002 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in... Moderate Unreviewed
CVE-2024-50001 was published Oct 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database