Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,616
Maven
5,000+
npm
4,255
NuGet
760
pip
4,040
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

913 advisories

Loading
An attacker that gains SSH access to an unprivileged account may be able to disrupt services ... Moderate Unreviewed
CVE-2025-59459 was published Oct 27, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.7 before 18.3.5, 18... Moderate Unreviewed
CVE-2025-11974 was published Oct 27, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.0 before 18.3.5, 18... High Unreviewed
CVE-2025-11447 was published Oct 27, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.3.5,... High Unreviewed
CVE-2025-10497 was published Oct 27, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Moderate Unreviewed
CVE-2025-53069 was published Oct 21, 2025
A lack of rate limiting in the component /Home/UploadStreamDocument of SigningHub v8.6.8 allows... High Unreviewed
CVE-2025-56223 was published Oct 20, 2025
rplay through 3.3.2 allows attackers to cause a denial of service (SIGSEGV and daemon crash) or... Moderate Unreviewed
CVE-2025-62672 was published Oct 19, 2025
Allocation of Resources Without Limits or Throttling vulnerability in The Wikimedia Foundation... Moderate Unreviewed
CVE-2025-62666 was published Oct 18, 2025
Allocation of Resources Without Limits or Throttling vulnerability in Azure Access Technology BLU... Critical Unreviewed
CVE-2025-11832 was published Oct 15, 2025
When a BIG-IP APM Access Policy is configured on a virtual server, undisclosed traffic can cause... High Unreviewed
CVE-2025-53521 was published Oct 15, 2025
When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane,... High Unreviewed
CVE-2025-59778 was published Oct 15, 2025
On BIG-IP Next CNF, BIG-IP Next SPK, and BIG-IP Next for Kubernetes systems, repeated undisclosed... High Unreviewed
CVE-2025-55670 was published Oct 15, 2025
When BIG-IP Advanced WAF is configured on a virtual server with Server-Side Request Forgery (SSRF... Moderate Unreviewed
CVE-2025-58474 was published Oct 15, 2025
When BIG-IP SSL Orchestrator is enabled, undisclosed traffic can cause the Traffic Management... High Unreviewed
CVE-2025-41430 was published Oct 15, 2025
When an iRule containing the HTTP::respond command is configured on a virtual server, undisclosed... High Unreviewed
CVE-2025-46706 was published Oct 15, 2025
A denial-of-service security issue exists in the affected product and version. The security issue... High Unreviewed
CVE-2025-9177 was published Oct 14, 2025
An unauthanticated remote attacker can perform a DoS of the Modbus service by sending a specific... Moderate Unreviewed
CVE-2025-41704 was published Oct 14, 2025
IBM Aspera Faspex 5.0.0 through 5.0.13.1 could allow a privileged user to cause a denial of... Moderate Unreviewed
CVE-2025-36171 was published Oct 9, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3... High Unreviewed
CVE-2025-10004 was published Oct 9, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8,... Moderate Unreviewed
CVE-2025-2934 was published Oct 9, 2025
If a user tries to login but the provided credentials are incorrect a log is created. The data... Moderate Unreviewed
CVE-2025-58582 was published Oct 6, 2025
A user with the appropriate authorization can create any number of user accounts via an API ... Low Unreviewed
CVE-2025-58578 was published Oct 6, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-44012 was published Oct 3, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-33040 was published Oct 3, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-33039 was published Oct 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database