Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

314 advisories

Loading
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31080 was published Apr 4, 2024
Transient DOS while processing a frame with malformed shared-key descriptor. High Unreviewed
CVE-2025-27065 was published Aug 6, 2025
Information disclosure while opening a fastrpc session when domain is not sanitized. Moderate Unreviewed
CVE-2025-21457 was published Aug 6, 2025
Memory corruption while processing an IOCTL command with an arbitrary address. High Unreviewed
CVE-2025-27068 was published Aug 6, 2025
Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information... Moderate Unreviewed
CVE-2025-53736 was published Aug 12, 2025
A vulnerability ( CVE-2025-21176 https://www.cve.org/CVERecord ) exists in DiaSymReader.dll due... High Unreviewed
CVE-2025-36855 was published Sep 8, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53797 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53796 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53798 was published Sep 9, 2025
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose... Moderate Unreviewed
CVE-2025-54901 was published Sep 9, 2025
A buffer overread can occur in the CPC application when operating in full duplex SPI upon... Low Unreviewed
CVE-2024-12975 was published Mar 7, 2025
Information disclosure while decoding this RTP packet headers received by UE from the network... High Unreviewed
CVE-2025-21488 was published Sep 24, 2025
Information disclosure while running video usecase having rogue firmware. Moderate Unreviewed
CVE-2025-27033 was published Sep 24, 2025
information disclosure while invoking calibration data from user space to update firmware size. Moderate Unreviewed
CVE-2025-27030 was published Sep 24, 2025
Memory corruption due to global buffer overflow when a test command uses an invalid payload type. High Unreviewed
CVE-2025-47317 was published Sep 24, 2025
Information disclosure when Video engine escape input data is less than expected minimum size. Moderate Unreviewed
CVE-2025-27036 was published Sep 24, 2025
Transient DOS while processing power control requests with invalid antenna or stream values. High Unreviewed
CVE-2025-47328 was published Sep 24, 2025
Transient DOS while handling command data during power control processing. High Unreviewed
CVE-2025-47326 was published Sep 24, 2025
Information disclosure when UE receives the RTP packet from the network, while decoding and... High Unreviewed
CVE-2025-21484 was published Sep 24, 2025
Information disclosure while decoding RTP packet received by UE from the network, when payload... High Unreviewed
CVE-2025-21487 was published Sep 24, 2025
Transient DOS while parsing the EPTM test control message to get the test pattern. High Unreviewed
CVE-2025-47318 was published Sep 24, 2025
Buffer Over-read, Off-by-one Error vulnerability in RTI Connext Professional (Core Libraries)... Moderate Unreviewed
CVE-2025-4582 was published Sep 23, 2025
Transient DOS while processing IOCTL call for image encoding. Moderate Unreviewed
CVE-2025-27049 was published Oct 9, 2025
Transient DOS while processing video packets received from video firmware. Moderate Unreviewed
CVE-2025-27041 was published Oct 9, 2025
Information disclosure while processing batch command execution in Video driver. Moderate Unreviewed
CVE-2025-27045 was published Oct 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database