Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,894
Erlang
38
GitHub Actions
38
Go
2,556
Maven
5,000+
npm
4,228
NuGet
747
pip
4,000
Pub
12
RubyGems
953
Rust
1,041
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,440 advisories

Loading
Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-61807 was published Oct 14, 2025
Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-61803 was published Oct 14, 2025
Dimension versions 4.1.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-61800 was published Oct 14, 2025
Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to... High Unreviewed
CVE-2025-58715 was published Oct 14, 2025
In gnss driver, there is a possible out of bounds read due to an integer overflow. This could... Moderate Unreviewed
CVE-2025-20722 was published Oct 14, 2025
In wlan AP driver, there is a possible out of bounds write due to an integer overflow. This could... High Unreviewed
CVE-2025-20710 was published Oct 14, 2025
Memory corruption while processing user buffers. High Unreviewed
CVE-2025-47351 was published Oct 9, 2025
This vulnerability affects Firefox < 143.0.3. High Unreviewed
CVE-2025-11152 was published Sep 30, 2025
go-f3 module vulnerable to integer overflow leading to panic High
CVE-2025-59942 was published for github.com/filecoin-project/go-f3 (Go) Sep 29, 2025
0xNirix
Credited to 0xNirix
An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By... High Unreviewed
CVE-2025-51495 was published Sep 29, 2025
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and... Moderate Unreviewed
CVE-2025-55552 was published Sep 25, 2025
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-... Moderate Unreviewed
CVE-2025-55554 was published Sep 25, 2025
Integer overflow in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to... High Unreviewed
CVE-2025-10892 was published Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix qgroup reserve... Moderate Unreviewed
CVE-2022-49075 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: af_netlink: Fix shift out of... Moderate Unreviewed
CVE-2022-49197 was published Sep 23, 2025
In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer... Moderate Unreviewed
CVE-2025-59800 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: uaccess: fix integer... High Unreviewed
CVE-2022-49289 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: dmaengine: zynqmp_dma: In... Moderate Unreviewed
CVE-2022-49320 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: anx7625: Fix... Moderate Unreviewed
CVE-2022-49222 was published Sep 22, 2025
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a... High Unreviewed
CVE-2025-55068 was published Sep 18, 2025
Ashlar-Vellum Cobalt VC6 File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7985 was published Sep 17, 2025
Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7982 was published Sep 17, 2025
This vulnerability affects Firefox < 143, Firefox ESR < 115.28, Firefox ESR < 140.3, Thunderbird ... High Unreviewed
CVE-2025-10533 was published Sep 16, 2025
Substance3D - Modeler versions 1.22.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2025-54259 was published Sep 10, 2025
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized... High Unreviewed
CVE-2025-54895 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database