Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,951
Erlang
39
GitHub Actions
38
Go
2,607
Maven
5,000+
npm
4,251
NuGet
757
pip
4,017
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

940 advisories

Loading
An authenticated user may trigger a use after free that may result in MongoDB Server crash and... Moderate Unreviewed
CVE-2025-6706 was published Jun 26, 2025
Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-6555 was published Jun 24, 2025
pycares has a Use-After-Free Vulnerability Moderate
GHSA-5qpg-rh4j-qp35 was published for pycares (pip) Jun 16, 2025
vEpiphyte
Credited to vEpiphyte
Possible kernel exceptions caused by reading and writing kernel heap data after free. Moderate Unreviewed
CVE-2025-46710 was published Jun 16, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... Moderate Unreviewed
CVE-2025-47106 was published Jun 10, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23106 was published Jun 4, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile... Moderate Unreviewed
CVE-2025-23101 was published Jun 4, 2025
Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed
CVE-2024-53015 was published Jun 3, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23104 was published Jun 2, 2025
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-5283 was published May 27, 2025
There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`.... Moderate Unreviewed
CVE-2025-4516 was published May 15, 2025
Pixmeo OsiriX MD is vulnerable to a local use after free scenario, which could allow an attacker... Moderate Unreviewed
CVE-2025-31946 was published May 9, 2025
Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations. Moderate Unreviewed
CVE-2024-45583 was published May 6, 2025
Memory corruption during concurrent access to server info object due to unprotected critical field. Moderate Unreviewed
CVE-2024-45562 was published May 6, 2025
IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0... Moderate Unreviewed
CVE-2025-27365 was published May 2, 2025
A null pointer dereference was addressed with improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2025-24179 was published Apr 29, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-31197 was published Apr 29, 2025
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix management of... Moderate Unreviewed
CVE-2025-22024 was published Apr 16, 2025
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. Moderate Unreviewed
CVE-2025-26681 was published Apr 8, 2025
Memory corruption while processing IOCTL calls to add route entry in the HW. Moderate Unreviewed
CVE-2024-45544 was published Apr 7, 2025
Memory corruption while processing multiple IOCTL calls from HLOS to DSP. Moderate Unreviewed
CVE-2024-49848 was published Apr 7, 2025
Memory corruption while invoking IOCTL map buffer request from userspace. Moderate Unreviewed
CVE-2024-45540 was published Apr 7, 2025
rust-openssl Use-After-Free in `Md::fetch` and `Cipher::fetch` Moderate
GHSA-4fcv-w3qc-ppgg was published for openssl (Rust) Apr 4, 2025
JavaScript code running while transforming a document with the XSLTProcessor could lead to a use... Moderate Unreviewed
CVE-2025-3028 was published Apr 1, 2025
A vulnerability was found in HDF5 up to 1.14.6. It has been rated as problematic. Affected by... Moderate Unreviewed
CVE-2025-2913 was published Mar 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database