Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

954 advisories

Loading
Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-54244 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54900 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-54910 was published Sep 9, 2025
Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54907 was published Sep 9, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-54113 was published Sep 9, 2025
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-54894 was published Sep 9, 2025
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54091 was published Sep 9, 2025
toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor High
GHSA-pfp7-vxgr-83pw was published for toodee (Rust) Sep 9, 2025
JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a... High Unreviewed
CVE-2025-40930 was published Sep 8, 2025
JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when... High Unreviewed
CVE-2025-40928 was published Sep 8, 2025
A vulnerability (CVE-2025-21172) exists in msdia140.dll due to integer overflow and heap-based... High Unreviewed
CVE-2025-36853 was published Sep 8, 2025
In Skia, there is a possible out of bounds write due to a heap buffer overflow. This could lead... High Unreviewed
CVE-2025-32318 was published Sep 5, 2025
In multiple functions of NdkMediaCodec.cpp, there is a possible out of bounds write due to a heap... High Unreviewed
CVE-2025-26455 was published Sep 5, 2025
In avrc_vendor_msg of avrc_opt.cc, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2024-49714 was published Sep 4, 2025
In appendFrom of Parcel.cpp, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2025-32325 was published Sep 4, 2025
In ConvertReductionOp of darwinn_mlir_converter_aidl.cc, there is a possible out of bounds write... High Unreviewed
CVE-2025-36906 was published Sep 4, 2025
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write... High Unreviewed
CVE-2025-36907 was published Sep 4, 2025
Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8299 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8302 was published Sep 2, 2025
Realtek RTL8811AU rtwlanu.sys N6CSet_DOT11_CIPHER_DEFAULT_KEY Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8301 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8300 was published Sep 2, 2025
arenavec has multiple memory corruption vulnerabilities in safe APIs High
GHSA-3632-54q8-m96x was published for arenavec (Rust) Sep 2, 2025
A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12... High Unreviewed
CVE-2025-34164 was published Aug 30, 2025
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow High
CVE-2025-57803 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 26, 2025
mescuwa
A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL... High Unreviewed
CVE-2025-35984 was published Aug 26, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database