Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
36
Go
2,521
Maven
5,000+
npm
4,167
NuGet
741
pip
3,963
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,926 advisories

Loading
A command injection vulnerability has been reported to affect QHora. If an attacker gains local... Low Unreviewed
CVE-2024-13087 was published Jun 6, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary where a... Low Unreviewed
CVE-2025-23255 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where a user may cause... Low Unreviewed
CVE-2025-23338 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a... Low Unreviewed
CVE-2025-23340 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local... Low Unreviewed
CVE-2025-23273 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a... Low Unreviewed
CVE-2025-23248 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where an attacker may... Low Unreviewed
CVE-2025-23308 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a... Low Unreviewed
CVE-2025-23271 was published Sep 24, 2025
NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a... Low Unreviewed
CVE-2025-23346 was published Sep 24, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may... Low Unreviewed
CVE-2025-23339 was published Sep 24, 2025
A vulnerability has been identified in the libarchive library, specifically within the... Low Unreviewed
CVE-2025-5914 was published Jun 9, 2025
In the Linux kernel, the following vulnerability has been resolved: net/usb: kalmia: Don't pass... Low Unreviewed
CVE-2023-52703 was published May 21, 2024
A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this... Low Unreviewed
CVE-2025-3122 was published Apr 3, 2025
An authentication bypass vulnerability exists in multiple WSO2 products when FIDO authentication... Low Unreviewed
CVE-2025-0672 was published Sep 23, 2025
ECOVACS robot vacuums and base stations communicate via an insecure Wi-Fi network with a... Low Unreviewed
CVE-2025-30198 was published Sep 5, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53699 was published Mar 7, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-53697 was published Mar 7, 2025
A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed
CVE-2024-50401 was published Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed
CVE-2024-50400 was published Nov 22, 2024
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... Low Unreviewed
CVE-2024-38638 was published Mar 7, 2025
A double free vulnerability has been reported to affect several QNAP operating system versions.... Low Unreviewed
CVE-2024-53698 was published Mar 7, 2025
A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed
CVE-2024-50403 was published Dec 6, 2024
A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed
CVE-2024-50402 was published Dec 6, 2024
An improper handling of URL encoding (Hex Encoding) vulnerability has been reported to affect... Low Unreviewed
CVE-2024-48866 was published Dec 6, 2024
A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed
CVE-2024-50398 was published Nov 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database