GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,358
Composer 4,819
Erlang 36
GitHub Actions 32
Go 2,410
Maven 5,802
npm 4,046
NuGet 723
pip 3,842
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,509

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

101,852 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-copy is used (for MSG_TRUNC in... High Unreviewed

CVE-2025-54351 was published Aug 3, 2025

NVIDIA Display Driver for Linux and Windows contains a vulnerability in the kernel mode driver,... High Unreviewed

CVE-2025-23277 was published Aug 3, 2025

NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use... High Unreviewed

CVE-2025-23279 was published Aug 3, 2025

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker might... High Unreviewed

CVE-2025-23278 was published Aug 3, 2025

NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU... High Unreviewed

CVE-2025-23283 was published Aug 3, 2025

NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker with local... High Unreviewed

CVE-2025-23281 was published Aug 3, 2025

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest... High Unreviewed

CVE-2025-23284 was published Aug 3, 2025

OpenNebula Community Edition (CE) before 7.0.0 and Enterprise Edition (EE) before 6.10.3 have a... High Unreviewed

CVE-2025-54955 was published Aug 3, 2025

NVIDIA Installer for Windows contains a vulnerability where an attacker may be able to escalate... High Unreviewed

CVE-2025-23276 was published Aug 3, 2025

The SEO Metrics plugin for WordPress is vulnerable to Privilege Escalation due to missing... High Unreviewed

CVE-2025-6754 was published Aug 2, 2025

Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on... High Unreviewed

CVE-2025-4613 was published Jun 12, 2025

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615/4.0.0-B20230531... High Unreviewed

CVE-2025-6337 was published Jun 20, 2025

BeyondTrust Privileged Remote Access (PRA) versions prior to 25.1 are vulnerable to a local... High Unreviewed

CVE-2025-0217 was published May 5, 2025

Kloxo versions 6.1.12 and earlier contain two setuid root binaries—lxsuexec and lxrestart—that... High Unreviewed

CVE-2012-10022 was published Aug 1, 2025

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the... High Unreviewed

CVE-2013-10061 was published Aug 1, 2025

An OS command injection vulnerability exists in multiple D-Link routers—confirmed on DIR-300 rev... High Unreviewed

CVE-2013-10050 was published Aug 1, 2025

An authenticated SQL injection vulnerability exists in OpenEMR ≤ 4.1.1 Patch 14 that allows a low... High Unreviewed

CVE-2013-10044 was published Aug 1, 2025

An authenticated OS command injection vulnerability exists in various Linksys router models ... High Unreviewed

CVE-2013-10058 was published Aug 1, 2025

A remote command execution vulnerability exists in ZPanel version 10.0.0.2 in its htpasswd module... High Unreviewed

CVE-2013-10053 was published Aug 1, 2025

A stack-based buffer overflow vulnerability exists in Synactis PDF In-The-Box ActiveX control ... High Unreviewed

CVE-2013-10057 was published Aug 1, 2025

An authenticated OS command injection vulnerability exists in various D-Link routers (tested on... High Unreviewed

CVE-2013-10059 was published Aug 1, 2025

A local privilege escalation vulnerability exists in Agnitum Outpost Internet Security 8.1 that... High Unreviewed

CVE-2013-10046 was published Aug 1, 2025

uploadsm in ChargePoint Home Flex 5.5.4.13 does not validate a user-controlled string for bz2... High Unreviewed

CVE-2025-54564 was published Aug 1, 2025

jose v6.0.10 was discovered to contain weak encryption. High Unreviewed

CVE-2025-45767 was published Aug 1, 2025

IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, and 9.5.0 could allow a... High Unreviewed

CVE-2025-2824 was published Aug 1, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

101,852 advisories