Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,291 advisories

Loading
ImageMagick BlobStream Forward-Seek Under-Allocation Low
CVE-2025-57807 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Sep 5, 2025
mescuwa
Credited to mescuwa
A vulnerability (CVE-2025-21172) exists in msdia140.dll due to integer overflow and heap-based... High Unreviewed
CVE-2025-36853 was published Sep 8, 2025
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault... Moderate Unreviewed
CVE-2025-40929 was published Sep 8, 2025
JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when... High Unreviewed
CVE-2025-40928 was published Sep 8, 2025
JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a... High Unreviewed
CVE-2025-40930 was published Sep 8, 2025
toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor High
GHSA-pfp7-vxgr-83pw was published for toodee (Rust) Sep 9, 2025
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54091 was published Sep 9, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-54113 was published Sep 9, 2025
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-54894 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54900 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54907 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-54910 was published Sep 9, 2025
Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-54244 was published Sep 9, 2025
Memory corruptions can be remotely triggered in the Control-M/Agent when SSL/TLS communication is... High Unreviewed
CVE-2025-55118 was published Sep 16, 2025
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap... High Unreviewed
CVE-2025-8894 was published Sep 16, 2025
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-7983 was published Sep 17, 2025
Free5gc 4.0.1 is vulnerable to Buffer Overflow. The AMF incorrectly validates the 5GS mobile... High Unreviewed
CVE-2025-56394 was published Sep 23, 2025
Buffer overflow vulnerability in Tenda AC9 1.0 via the user supplied sys.vendor configuration value. High Unreviewed
CVE-2025-57638 was published Sep 23, 2025
Buffer overflow vulnerability in D-Link DI-7100G 2020-02-21 in the sub_451754 function of the... High Unreviewed
CVE-2025-57637 was published Sep 23, 2025
A heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1.... High Unreviewed
CVE-2025-51005 was published Sep 23, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where an attacker may... Low Unreviewed
CVE-2025-23308 was published Sep 24, 2025
Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a remote attacker... High Unreviewed
CVE-2025-10502 was published Sep 24, 2025
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA)... Critical Unreviewed
CVE-2025-20363 was published Sep 25, 2025
Heap-based Buffer Overflow vulnerability in ABB Terra AC wallbox.This issue affects Terra AC... Moderate Unreviewed
CVE-2025-10504 was published Sep 29, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed
CVE-2025-43912 was published Oct 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database