Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,235 advisories

Loading
Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally. High Unreviewed
CVE-2025-26674 was published Apr 8, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-26668 was published Apr 8, 2025
Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally. High Unreviewed
CVE-2025-26666 was published Apr 8, 2025
Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to... High Unreviewed
CVE-2025-26639 was published Apr 8, 2025
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to... High Unreviewed
CVE-2025-21221 was published Apr 8, 2025
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to... High Unreviewed
CVE-2025-21222 was published Apr 8, 2025
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to... High Unreviewed
CVE-2025-21205 was published Apr 8, 2025
A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2... High Unreviewed
CVE-2025-29070 was published Apr 1, 2025
A heap buffer overflow vulnerability has been identified in the lcms2-2.16. The vulnerability... High Unreviewed
CVE-2025-29069 was published Apr 1, 2025
heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local... Moderate Unreviewed
CVE-2025-31164 was published Mar 28, 2025
Luxion KeyShot DAE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2025-2531 was published Mar 25, 2025
The various bson_append functions in the MongoDB C driver library may be susceptible to buffer... High Unreviewed
CVE-2025-0755 was published Mar 18, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1651 was published Mar 13, 2025
Delta Electronics CNCSoft-G2 Version 2.1.0.16 and prior lacks proper validation of the length of... High Unreviewed
CVE-2024-12858 was published Mar 13, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1429 was published Mar 13, 2025
Ashlar-Vellum Cobalt VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-2019 was published Mar 11, 2025
Substance3D - Modeler versions 1.15.0 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-27173 was published Mar 11, 2025
InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2025-27177 was published Mar 11, 2025
InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2025-27171 was published Mar 11, 2025
InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2025-24453 was published Mar 11, 2025
Substance3D - Sampler versions 4.5.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-24439 was published Mar 11, 2025
Substance3D - Sampler versions 4.5.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-24443 was published Mar 11, 2025
Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate... High Unreviewed
CVE-2025-26634 was published Mar 11, 2025
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized... High Unreviewed
CVE-2025-24995 was published Mar 11, 2025
Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to... High Unreviewed
CVE-2025-24985 was published Mar 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database