Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,263
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,307 advisories

Loading
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write... High Unreviewed
CVE-2025-36907 was published Sep 4, 2025
In syna_cdev_ioctl_store_pid() of syna_tcm2_sysfs.c, there is a possible out of bounds write due... Moderate Unreviewed
CVE-2025-36902 was published Sep 4, 2025
Realtek RTL8811AU rtwlanu.sys N6CSet_DOT11_CIPHER_DEFAULT_KEY Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8301 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8302 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8299 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8300 was published Sep 2, 2025
arenavec has multiple memory corruption vulnerabilities in safe APIs High
GHSA-3632-54q8-m96x was published for arenavec (Rust) Sep 2, 2025
NanoMQ 0.17.5 is vulnerable to heap-buffer-overflow in the conn_handler function of mqtt_parser.c... High Unreviewed
CVE-2023-34488 was published Jun 12, 2023
A maliciously crafted SKP file, when linked or imported into Autodesk Revit, can be used to cause... High Unreviewed
CVE-2024-11608 was published Dec 9, 2024
imagemagick: heap-buffer overflow read in MNG magnification with alpha High
CVE-2025-55004 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
ImageMagick has a heap-buffer-overflow Low
GHSA-fff3-4rp7-px97 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
hardik05
Credited to hardik05
IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17... High Unreviewed
CVE-2025-2900 was published May 14, 2025
A maliciously crafted 3DM file, when linked or imported into certain Autodesk products, can force... High Unreviewed
CVE-2025-5043 was published Jul 29, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1651 was published Mar 13, 2025
A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based... High Unreviewed
CVE-2025-5040 was published Jul 10, 2025
A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can... High Unreviewed
CVE-2025-1275 was published Apr 15, 2025
A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based... High Unreviewed
CVE-2025-2497 was published Apr 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1656 was published Apr 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1273 was published Apr 15, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1429 was published Mar 13, 2025
In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204,... High Unreviewed
CVE-2025-52584 was published Aug 19, 2025
In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204,... High Unreviewed
CVE-2025-46269 was published Aug 19, 2025
MuseScore CAP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44428 was published May 3, 2024
Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a... High Unreviewed
CVE-2021-34583 was published May 24, 2022
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-53737 was published Aug 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database