Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,656
Maven
5,000+
npm
4,284
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,484 advisories

Loading
A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from... Moderate Unreviewed
CVE-2025-61662 was published Nov 18, 2025
In bta_hf_client_cb_init of bta_hf_client_main.cc, there is a possible remote code execution due... High Unreviewed
CVE-2025-48593 was published Nov 18, 2025
Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote... High Unreviewed
CVE-2024-9126 was published Nov 14, 2025
AUTOMGEN versions up to and including 8.0.0.7 (also referenced as 8.022) contain a vulnerability... Moderate Unreviewed
CVE-2011-10034 was published Nov 13, 2025
A maliciously crafted DWG file, when parsed through Autodesk 3ds Max, can force a Use-After-Free... High Unreviewed
CVE-2025-11797 was published Nov 12, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61834 was published Nov 11, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-64531 was published Nov 11, 2025
Format Plugins versions 1.1.1 and earlier are affected by a Use After Free vulnerability that... Moderate Unreviewed
CVE-2025-61842 was published Nov 11, 2025
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to... High Unreviewed
CVE-2025-62213 was published Nov 11, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62216 was published Nov 11, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62203 was published Nov 11, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62205 was published Nov 11, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62199 was published Nov 11, 2025
Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to... High Unreviewed
CVE-2025-60707 was published Nov 11, 2025
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59515 was published Nov 11, 2025
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-60716 was published Nov 11, 2025
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-60717 was published Nov 11, 2025
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-61818 was published Nov 11, 2025
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61814 was published Nov 11, 2025
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61815 was published Nov 11, 2025
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-61817 was published Nov 11, 2025
Use-after-free in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 145 and... High Unreviewed
CVE-2025-13020 was published Nov 11, 2025
Use-after-free in the Audio/Video component. This vulnerability affects Firefox < 145, Firefox... High Unreviewed
CVE-2025-13014 was published Nov 11, 2025
Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who... High Unreviewed
CVE-2025-12437 was published Nov 10, 2025
Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a... High Unreviewed
CVE-2025-12438 was published Nov 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database