GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
6,169 advisories
Eclipse Jersey has a Race Condition
Critical
CVE-2025-12383
was published
for
org.glassfish.jersey.core:jersey-client
(Maven)
Nov 18, 2025
OpenAM: Using arbitrary OIDC requested claims values in id_token and user_info is allowed
High
CVE-2025-64099
was published
for
org.openidentityplatform.openam:openam-oauth2
(Maven)
Nov 12, 2025
CycloneDX Core (Java): BOM validation is vulnerable to XML External Entity injection
High
CVE-2025-64518
was published
for
org.cyclonedx:cyclonedx-core-java
(Maven)
Nov 10, 2025
Protobuf Maven Plugin protocDigest is ignored when using protoc from PATH
Low
GHSA-j2pc-v64r-mv4f
was published
for
io.github.ascopes:protobuf-maven-plugin
(Maven)
Nov 4, 2025
ProTip!
Advisories are also available from the
GraphQL API