GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,577
Composer 4,992
Erlang 39
GitHub Actions 38
Go 2,634
Maven 6,103
npm 4,258
NuGet 760
pip 4,051
Pub 12
RubyGems 955
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,293

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5,491 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed

CVE-2024-53015 was published Jun 3, 2025

Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to... High Unreviewed

CVE-2025-5068 was published Jun 3, 2025

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use... High Unreviewed

CVE-2025-5036 was published Jun 2, 2025

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed

CVE-2025-23104 was published Jun 2, 2025

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... High Unreviewed

CVE-2025-0819 was published Jun 2, 2025

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU... High Unreviewed

CVE-2025-0073 was published Jun 2, 2025

A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24... High Unreviewed

CVE-2023-26226 was published May 30, 2025

jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c. High Unreviewed

CVE-2025-44906 was published May 30, 2025

Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed

CVE-2025-5283 was published May 27, 2025

Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker... High Unreviewed

CVE-2025-5063 was published May 27, 2025

A flaw was found in GIMP when processing XCF image files. If a user opens one of these image... High Unreviewed

CVE-2025-48798 was published May 27, 2025

Process Sync has a Potential Unsound Issue in SharedMutex Low

CVE-2025-48752 was published for process-sync (Rust) May 24, 2025

Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed

CVE-2025-1706 was published May 17, 2025

macroquad vulnerable to multiple soundness issues High

GHSA-gg76-hg3v-5q6c was published for macroquad (Rust) May 15, 2025

There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`.... Moderate Unreviewed

CVE-2025-4516 was published May 15, 2025

Substance3D - Stager versions 3.1.1 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-43571 was published May 13, 2025

Substance3D - Stager versions 3.1.1 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-43570 was published May 13, 2025

Substance3D - Stager versions 3.1.1 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-43549 was published May 13, 2025

Substance3D - Stager versions 3.1.1 and earlier are affected by a Use After Free vulnerability... High Unreviewed

CVE-2025-43568 was published May 13, 2025

Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100... High Unreviewed

CVE-2025-20062 was published May 13, 2025

Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100... High Unreviewed

CVE-2025-20046 was published May 13, 2025

Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100... High Unreviewed

CVE-2025-20006 was published May 13, 2025

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to... High Unreviewed

CVE-2025-32709 was published May 13, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed

CVE-2025-30393 was published May 13, 2025

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally. High Unreviewed

CVE-2025-30400 was published May 13, 2025

Previous 1…12…220 Next

Previous 1 2 … 10 11 12 13 14 … 219 220 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,491 advisories