Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,203 advisories

Loading
An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2.... High Unreviewed
CVE-2025-55312 was published Dec 11, 2025
An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before... High Unreviewed
CVE-2025-55314 was published Dec 11, 2025
NULL-pointer dereference vulnerabilities in Aqara Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, and... Moderate Unreviewed
CVE-2025-65296 was published Dec 11, 2025
A NULL pointer dereference vulnerability in the importDataObject() function of PDF-XChange Editor... High Unreviewed
CVE-2025-64085 was published Dec 9, 2025
A NULL pointer dereference vulnerability in the util.readFileIntoStream component of PDF-XChange... High Unreviewed
CVE-2025-64086 was published Dec 9, 2025
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Moderate Unreviewed
CVE-2025-62463 was published Dec 9, 2025
Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized... High Unreviewed
CVE-2025-62466 was published Dec 9, 2025
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Moderate Unreviewed
CVE-2025-62465 was published Dec 9, 2025
NULL Pointer Dereference vulnerability in ravynsoft ravynos.This issue affects ravynos: through 0... High Unreviewed
CVE-2025-14309 was published Dec 9, 2025
Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers High
GHSA-m6wq-66p2-c8pc was published for github.com/babylonlabs-io/babylon (Go) Dec 8, 2025
Envoy crashes when JWT authentication is configured with the remote JWKS fetching Moderate
CVE-2025-64527 was published for github.com/envoyproxy/envoy (Go) Dec 5, 2025
botengyao phlax
agrawroh yanavlasov
Credited to botengyao, phlax, agrawroh, and yanavlasov
NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a... Moderate Unreviewed
CVE-2025-6966 was published Dec 5, 2025
An issue was discovered in Camera in Samsung Mobile Processor Exynos 1280 and 2200. Unnecessary... High Unreviewed
CVE-2025-54326 was published Dec 3, 2025
In Modem, there is a possible system crash due to improper input validation. This could lead to... Moderate Unreviewed
CVE-2025-20790 was published Dec 2, 2025
In Modem, there is a possible application crash due to improper input validation. This could lead... Moderate Unreviewed
CVE-2025-20755 was published Dec 2, 2025
In Modem, there is a possible system crash due to improper input validation. This could lead to... Moderate Unreviewed
CVE-2025-20750 was published Dec 2, 2025
NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when... High Unreviewed
CVE-2025-7007 was published Dec 1, 2025
A NULL pointer dereference in the ADTSAudioFileServerMediaSubsession::createNewRTPSink() function... Moderate Unreviewed
CVE-2025-65408 was published Dec 1, 2025
Netskope was notified about a potential gap in its agent (NS Client) on Windows systems. If this... Moderate Unreviewed
CVE-2025-11156 was published Nov 28, 2025
NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause a... Moderate Unreviewed
CVE-2025-33197 was published Nov 25, 2025
Null pointer dereference in add_ca_certs() in Cesanta Mongoose before 7.2 allows remote attackers... Moderate Unreviewed
CVE-2025-65502 was published Nov 24, 2025
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote... Moderate Unreviewed
CVE-2025-65501 was published Nov 24, 2025
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3... Moderate Unreviewed
CVE-2025-65496 was published Nov 24, 2025
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3... Moderate Unreviewed
CVE-2025-65497 was published Nov 24, 2025
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3... Moderate Unreviewed
CVE-2025-65498 was published Nov 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database