Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,307 advisories

Loading
Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a remote attacker... High Unreviewed
CVE-2025-10502 was published Sep 24, 2025
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-7983 was published Sep 17, 2025
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap... High Unreviewed
CVE-2025-8894 was published Sep 16, 2025
Memory corruptions can be remotely triggered in the Control-M/Agent when SSL/TLS communication is... High Unreviewed
CVE-2025-55118 was published Sep 16, 2025
A Heap buffer overflow in the server-site handshake implementation in Real Time Logic SharkSSL 09... Moderate Unreviewed
CVE-2024-48075 was published Nov 13, 2024
Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker... Critical Unreviewed
CVE-2025-47981 was published Jul 8, 2025
Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-54244 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54900 was published Sep 9, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-54113 was published Sep 9, 2025
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-54894 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-54910 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54907 was published Sep 9, 2025
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54091 was published Sep 9, 2025
A heap-based buffer overflow vulnerability exists in the input parsing logic of Arcserve Unified... Critical Unreviewed
CVE-2025-34522 was published Aug 28, 2025
A heap-based buffer overflow vulnerability exists in the exists in the network-facing input... Critical Unreviewed
CVE-2025-34523 was published Aug 28, 2025
toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor High
GHSA-pfp7-vxgr-83pw was published for toodee (Rust) Sep 9, 2025
A vulnerability (CVE-2025-21172) exists in msdia140.dll due to integer overflow and heap-based... High Unreviewed
CVE-2025-36853 was published Sep 8, 2025
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized... High Unreviewed
CVE-2025-53149 was published Aug 12, 2025
In appendFrom of Parcel.cpp, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2025-32325 was published Sep 4, 2025
In avrc_vendor_msg of avrc_opt.cc, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2024-49714 was published Sep 4, 2025
In ConvertReductionOp of darwinn_mlir_converter_aidl.cc, there is a possible out of bounds write... High Unreviewed
CVE-2025-36906 was published Sep 4, 2025
In Skia, there is a possible out of bounds write due to a heap buffer overflow. This could lead... High Unreviewed
CVE-2025-32318 was published Sep 5, 2025
In multiple functions of NdkMediaCodec.cpp, there is a possible out of bounds write due to a heap... High Unreviewed
CVE-2025-26455 was published Sep 5, 2025
BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several... Critical Unreviewed
CVE-2025-40906 was published May 16, 2025
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka... Moderate Unreviewed
CVE-2025-40907 was published May 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database