Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,423 advisories

Loading
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-47175 was published Jun 10, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47164 was published Jun 10, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47165 was published Jun 10, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47170 was published Jun 10, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47168 was published Jun 10, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... Moderate Unreviewed
CVE-2025-47106 was published Jun 10, 2025
Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-33071 was published Jun 10, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-43589 was published Jun 10, 2025
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-32712 was published Jun 10, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23106 was published Jun 4, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile... Moderate Unreviewed
CVE-2025-23101 was published Jun 4, 2025
An issue was discovered in Samsung Mobile Processor Exynos 980, 990, 1080, 2100, 1280, 2200, 1380... High Unreviewed
CVE-2025-23098 was published Jun 3, 2025
Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. High Unreviewed
CVE-2025-27038 was published Jun 3, 2025
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is... High Unreviewed
CVE-2025-27031 was published Jun 3, 2025
Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed
CVE-2024-53015 was published Jun 3, 2025
Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to... High Unreviewed
CVE-2025-5068 was published Jun 3, 2025
A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use... High Unreviewed
CVE-2025-5036 was published Jun 2, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23104 was published Jun 2, 2025
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... High Unreviewed
CVE-2025-0819 was published Jun 2, 2025
Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU... High Unreviewed
CVE-2025-0073 was published Jun 2, 2025
A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24... High Unreviewed
CVE-2023-26226 was published May 30, 2025
jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c. High Unreviewed
CVE-2025-44906 was published May 30, 2025
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-5283 was published May 27, 2025
Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker... High Unreviewed
CVE-2025-5063 was published May 27, 2025
A flaw was found in GIMP when processing XCF image files. If a user opens one of these image... High Unreviewed
CVE-2025-48798 was published May 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database