Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

893 advisories

Loading
Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network. Moderate Unreviewed
CVE-2025-54101 was published Sep 9, 2025
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... Moderate Unreviewed
CVE-2025-3212 was published Sep 8, 2025
In geniezone, there is a possible memory corruption due to use after free. This could lead to... Moderate Unreviewed
CVE-2025-20707 was published Sep 2, 2025
In hidd_check_config_done of hidd_conn.cc, there is a possible way to execute arbitrary code due... Moderate Unreviewed
CVE-2025-22407 was published Aug 27, 2025
A flaw has been found in PoDoFo 1.1.0-dev. This issue affects the function PdfTokenizer:... Moderate Unreviewed
CVE-2025-9394 was published Aug 24, 2025
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that... Moderate Unreviewed
CVE-2025-49562 was published Aug 12, 2025
Illustrator versions 28.7.8, 29.6.1 and earlier are affected by a Use After Free vulnerability... Moderate Unreviewed
CVE-2025-49568 was published Aug 12, 2025
Vulnerability of returning released pointers in the distributed notification service. Impact:... Moderate Unreviewed
CVE-2025-54635 was published Aug 6, 2025
Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2025-54626 was published Aug 6, 2025
Use After Free vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU... Moderate Unreviewed
CVE-2025-0932 was published Aug 4, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43216 was published Jul 30, 2025
An IBM MQ 9.3 and 9.4 Client connecting to an MQ Queue Manager can cause a SIGSEGV in the... Moderate Unreviewed
CVE-2025-3631 was published Jul 11, 2025
Virtual address reuse issue in the memory management module, which can be exploited by non... Moderate Unreviewed
CVE-2025-53185 was published Jul 7, 2025
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This... Moderate Unreviewed
CVE-2025-0634 was published Jun 30, 2025
An authenticated user may trigger a use after free that may result in MongoDB Server crash and... Moderate Unreviewed
CVE-2025-6706 was published Jun 26, 2025
Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-6555 was published Jun 24, 2025
Possible kernel exceptions caused by reading and writing kernel heap data after free. Moderate Unreviewed
CVE-2025-46710 was published Jun 16, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... Moderate Unreviewed
CVE-2025-47106 was published Jun 10, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23106 was published Jun 4, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile... Moderate Unreviewed
CVE-2025-23101 was published Jun 4, 2025
Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed
CVE-2024-53015 was published Jun 3, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23104 was published Jun 2, 2025
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-5283 was published May 27, 2025
There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`.... Moderate Unreviewed
CVE-2025-4516 was published May 15, 2025
Pixmeo OsiriX MD is vulnerable to a local use after free scenario, which could allow an attacker... Moderate Unreviewed
CVE-2025-31946 was published May 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database