Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,233 advisories

Loading
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote... Critical Unreviewed
CVE-2025-20260 was published Jun 18, 2025
A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues... High Unreviewed
CVE-2025-49850 was published Jun 17, 2025
Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered... Critical Unreviewed
CVE-2025-47868 was published Jun 16, 2025
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-32717 was published Jun 11, 2025
InCopy versions 20.2, 19.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-47107 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-47174 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-47169 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-47162 was published Jun 10, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-33066 was published Jun 10, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-33064 was published Jun 10, 2025
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker... High Unreviewed
CVE-2025-32713 was published Jun 10, 2025
Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-32718 was published Jun 10, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2025-30317 was published Jun 10, 2025
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap... Low Unreviewed
CVE-2025-5915 was published Jun 9, 2025
WOLFBOX Level 2 EV Charger tuya_svc_devos_activate_result_parse Heap-based Buffer Overflow Remote... High Unreviewed
CVE-2025-5750 was published Jun 6, 2025
Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2025-48910 was published Jun 6, 2025
Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-1051 was published Jun 2, 2025
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check.... Critical Unreviewed
CVE-2025-20672 was published Jun 2, 2025
hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5Z__filter_scaleoffset... High Unreviewed
CVE-2025-44905 was published May 30, 2025
hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VM_memcpyvv function. High Unreviewed
CVE-2025-44904 was published May 30, 2025
A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these... High Unreviewed
CVE-2025-48797 was published May 27, 2025
A malicious actor with access to the management network could execute a remote code execution ... Critical Unreviewed
CVE-2025-23123 was published May 19, 2025
BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several... Critical Unreviewed
CVE-2025-40906 was published May 16, 2025
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka... Moderate Unreviewed
CVE-2025-40907 was published May 16, 2025
IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17... High Unreviewed
CVE-2025-2900 was published May 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database