Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

140 advisories

Loading
Apache Struts has a Denial of Service vulnerability High
CVE-2025-66675 was published for org.apache.struts:struts2-core (Maven) Dec 10, 2025
Babylon Incorrect FP inactive accounting in costaking creates “phantom stake” that earns rewards after BTC unbond Moderate
GHSA-4rmq-mc2c-r495 was published for github.com/babylonlabs-io/babylon (Go) Dec 9, 2025
Apache Struts is Vulnerable to DoS via File Leak High
CVE-2025-64775 was published for org.apache.struts:struts2-core (Maven) Dec 1, 2025
A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest... Moderate Unreviewed
CVE-2025-29934 was published Nov 21, 2025
PerfreeBlog v4.0.11 has an arbitrary file deletion vulnerability in the unInstallTheme function High Unreviewed
CVE-2025-60730 was published Oct 24, 2025
There is an incomplete cleanup vulnerability in Qt Network's Schannel support on Windows which... Critical Unreviewed
CVE-2025-6338 was published Oct 16, 2025
When DNS cache is configured on a BIG-IP or BIG-IP Next CNF virtual server, undisclosed DNS... High Unreviewed
CVE-2025-59781 was published Oct 15, 2025
A vulnerability in the Day One setup process of Cisco IOS XE Software for Catalyst 9800 Series... Moderate Unreviewed
CVE-2025-20293 was published Sep 24, 2025
CMSEasy v7.7.8.0 and before is vulnerable to Arbitrary file deletion in database_admin.php. Moderate Unreviewed
CVE-2025-55910 was published Sep 22, 2025
Improper cleanup in AMD CPU microcode patch loading could allow an attacker with local... High Unreviewed
CVE-2025-0032 was published Sep 6, 2025
Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade... Low Unreviewed
CVE-2024-21977 was published Sep 5, 2025
Tunnelblick 3.5beta06 before 7.0, when incompletely uninstalled, allows attackers to execute... High Unreviewed
CVE-2025-43711 was published Jul 5, 2025
An incomplete cleanup vulnerability [CWE-459] in FortiOS 7.2 all versions and before &... Low Unreviewed
CVE-2023-29184 was published Jun 10, 2025
In the Linux kernel, the following vulnerability has been resolved: mm, slab: clean up slab-... High Unreviewed
CVE-2025-37908 was published May 20, 2025
Apache Tomcat Denial of Service via invalid HTTP priority header Moderate
CVE-2025-31650 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Apr 28, 2025
amita-seal
Credited to amita-seal
A denial of service vulnerability exists in the NetX Component HTTP server functionality of... Moderate Unreviewed
CVE-2024-50385 was published Apr 2, 2025
A denial of service vulnerability exists in the NetX Component HTTP server functionality of... Moderate Unreviewed
CVE-2024-50384 was published Apr 2, 2025
In the Linux kernel, the following vulnerability has been resolved: net: hns3: make sure ptp... Moderate Unreviewed
CVE-2025-21924 was published Apr 1, 2025
In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix cleanup... Moderate Unreviewed
CVE-2023-52929 was published Mar 27, 2025
Insufficient clearing of GPU global memory could allow a malicious process running on the same... Moderate Unreviewed
CVE-2024-36353 was published Mar 2, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: do proper folio... Moderate Unreviewed
CVE-2024-57975 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: do proper folio... Moderate Unreviewed
CVE-2024-57976 was published Feb 27, 2025
NVIDIA Unified Memory driver for Linux contains a vulnerability where an attacker could leak... Moderate Unreviewed
CVE-2024-53869 was published Jan 28, 2025
NVIDIA vGPU software contains a vulnerability in the host driver, where it can allow a guest to... Moderate Unreviewed
CVE-2024-53881 was published Jan 28, 2025
Vulnerability in the PMB platform that allows an attacker to persist temporary files on the... Moderate Unreviewed
CVE-2025-0473 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database