GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

114,105 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed

CVE-2025-60715 was published Nov 11, 2025

Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate... High Unreviewed

CVE-2025-60703 was published Nov 11, 2025

Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized... High Unreviewed

CVE-2025-60705 was published Nov 11, 2025

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate... High Unreviewed

CVE-2025-60704 was published Nov 11, 2025

Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally. High Unreviewed

CVE-2025-60714 was published Nov 11, 2025

Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed

CVE-2025-60717 was published Nov 11, 2025

Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to... High Unreviewed

CVE-2025-60709 was published Nov 11, 2025

Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an... High Unreviewed

CVE-2025-60719 was published Nov 11, 2025

Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. High Unreviewed

CVE-2025-60720 was published Nov 11, 2025

Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed

CVE-2025-60713 was published Nov 11, 2025

Privilege context switching error in Windows Administrator Protection allows an authorized... High Unreviewed

CVE-2025-60721 was published Nov 11, 2025

Improper link resolution before file access ('link following') in Host Process for Windows Tasks... High Unreviewed

CVE-2025-60710 was published Nov 11, 2025

Untrusted search path in Windows Administrator Protection allows an authorized attacker to... High Unreviewed

CVE-2025-60718 was published Nov 11, 2025

Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to... High Unreviewed

CVE-2025-60707 was published Nov 11, 2025

Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. High Unreviewed

CVE-2025-60716 was published Nov 11, 2025

Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed

CVE-2025-59515 was published Nov 11, 2025

Improper privilege management in Microsoft Streaming Service allows an authorized attacker to... High Unreviewed

CVE-2025-59514 was published Nov 11, 2025

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-61815 was published Nov 11, 2025

InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed

CVE-2025-61818 was published Nov 11, 2025

InCopy versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2025-61816 was published Nov 11, 2025

InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed

CVE-2025-61817 was published Nov 11, 2025

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-61814 was published Nov 11, 2025

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2025-61824 was published Nov 11, 2025

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2025-61832 was published Nov 11, 2025

Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code... High Unreviewed

CVE-2025-59504 was published Nov 11, 2025

Previous 1…6…400 Next

Previous 1 2 3 4 5 6 7 8 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,105 advisories