Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,942
Erlang
39
GitHub Actions
38
Go
2,599
Maven
5,000+
npm
4,249
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,446 advisories

Loading
A flaw was found in the asynchronous message queue handling of the libsoup library, widely used... High Unreviewed
CVE-2025-12105 was published Oct 23, 2025
An authorized user may crash the MongoDB server by causing buffer over-read. This can be done by... Moderate Unreviewed
CVE-2025-11979 was published Oct 20, 2025
Use After Free in WebSocket server implementation in lws_handshake_server in warmcat... Moderate Unreviewed
CVE-2025-11677 was published Oct 20, 2025
In quickjs, in js_print_object, when printing an array, the function first fetches the array... High Unreviewed
CVE-2025-62490 was published Oct 16, 2025
A Use-After-Free (UAF) vulnerability exists in the QuickJS engine's standard library when... High Unreviewed
CVE-2025-62491 was published Oct 16, 2025
When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server,... High Unreviewed
CVE-2025-48008 was published Oct 15, 2025
Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-54279 was published Oct 15, 2025
Substance3D - Stager versions 3.1.4 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61802 was published Oct 14, 2025
Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could... High Unreviewed
CVE-2025-61801 was published Oct 14, 2025
Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-54281 was published Oct 14, 2025
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-59290 was published Oct 14, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59234 was published Oct 14, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59236 was published Oct 14, 2025
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-59238 was published Oct 14, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59243 was published Oct 14, 2025
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59202 was published Oct 14, 2025
Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-59206 was published Oct 14, 2025
Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-59210 was published Oct 14, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59222 was published Oct 14, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59221 was published Oct 14, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59223 was published Oct 14, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59224 was published Oct 14, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59225 was published Oct 14, 2025
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59226 was published Oct 14, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-59227 was published Oct 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database