Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,053
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,492 advisories

Loading
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27750 was published Apr 8, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27746 was published Apr 8, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27751 was published Apr 8, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27745 was published Apr 8, 2025
Use after free in Windows Shell allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27729 was published Apr 8, 2025
Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network. High Unreviewed
CVE-2025-27491 was published Apr 8, 2025
Animate versions 24.0.7, 23.0.10 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-27200 was published Apr 8, 2025
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-27467 was published Apr 8, 2025
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-27476 was published Apr 8, 2025
Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-27480 was published Apr 8, 2025
Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges... High Unreviewed
CVE-2025-26687 was published Apr 8, 2025
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. Moderate Unreviewed
CVE-2025-26681 was published Apr 8, 2025
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-26671 was published Apr 8, 2025
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized... High Unreviewed
CVE-2025-26670 was published Apr 8, 2025
Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-26679 was published Apr 8, 2025
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized... High Unreviewed
CVE-2025-26663 was published Apr 8, 2025
Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized... High Unreviewed
CVE-2025-26648 was published Apr 8, 2025
Memory corruption while processing memory map or unmap IOCTL operations simultaneously. High Unreviewed
CVE-2025-21437 was published Apr 7, 2025
Memory corruption while processing multiple IOCTL calls from HLOS to DSP. Moderate Unreviewed
CVE-2024-49848 was published Apr 7, 2025
Memory corruption while processing IOCTL calls to add route entry in the HW. Moderate Unreviewed
CVE-2024-45544 was published Apr 7, 2025
Memory corruption may occur while initiating two IOCTL calls simultaneously to create processes... High Unreviewed
CVE-2025-21436 was published Apr 7, 2025
Memory corruption while invoking IOCTL map buffer request from userspace. Moderate Unreviewed
CVE-2024-45540 was published Apr 7, 2025
Memory corruption while handling file descriptor during listener registration/de-registration. High Unreviewed
CVE-2024-43066 was published Apr 7, 2025
rust-openssl Use-After-Free in `Md::fetch` and `Cipher::fetch` Moderate
GHSA-4fcv-w3qc-ppgg was published for openssl (Rust) Apr 4, 2025
Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code... High Unreviewed
CVE-2025-29815 was published Apr 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database