Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5,322 advisories

Loading
An IBM MQ 9.3 and 9.4 Client connecting to an MQ Queue Manager can cause a SIGSEGV in the... Moderate Unreviewed
CVE-2025-3631 was published Jul 11, 2025
A Use After Free vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS... High Unreviewed
CVE-2025-52946 was published Jul 11, 2025
A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that... High Unreviewed
CVE-2025-7425 was published Jul 10, 2025
Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-49735 was published Jul 8, 2025
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-49733 was published Jul 8, 2025
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-49726 was published Jul 8, 2025
Use after free in Windows Connected Devices Platform Service allows an unauthorized attacker to... High Unreviewed
CVE-2025-49724 was published Jul 8, 2025
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-49725 was published Jul 8, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49711 was published Jul 8, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49700 was published Jul 8, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49699 was published Jul 8, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49703 was published Jul 8, 2025
Use after free in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to... High Unreviewed
CVE-2025-49675 was published Jul 8, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49695 was published Jul 8, 2025
Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate... High Unreviewed
CVE-2025-49685 was published Jul 8, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-49698 was published Jul 8, 2025
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate... High Unreviewed
CVE-2025-49677 was published Jul 8, 2025
Use after free in Windows Media allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-49682 was published Jul 8, 2025
Use after free in Windows Event Tracing allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-49660 was published Jul 8, 2025
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized... High Unreviewed
CVE-2025-48821 was published Jul 8, 2025
Use after free in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code... High Unreviewed
CVE-2025-48806 was published Jul 8, 2025
Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate... High Unreviewed
CVE-2025-47991 was published Jul 8, 2025
Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-47976 was published Jul 8, 2025
Use after free in Universal Print Management Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-47986 was published Jul 8, 2025
Memory corruption while processing the TESTPATTERNCONFIG escape path. High Unreviewed
CVE-2025-27047 was published Jul 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database