Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,573 advisories

Loading
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62199 was published Nov 11, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62203 was published Nov 11, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-62205 was published Nov 11, 2025
Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to... High Unreviewed
CVE-2025-60707 was published Nov 11, 2025
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-60716 was published Nov 11, 2025
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59515 was published Nov 11, 2025
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-60717 was published Nov 11, 2025
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-61818 was published Nov 11, 2025
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-61817 was published Nov 11, 2025
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61814 was published Nov 11, 2025
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-61815 was published Nov 11, 2025
Use-after-free in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 145 and... High Unreviewed
CVE-2025-13020 was published Nov 11, 2025
Use-after-free in the Audio/Video component. This vulnerability affects Firefox < 145, Firefox... High Unreviewed
CVE-2025-13014 was published Nov 11, 2025
Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a... High Unreviewed
CVE-2025-12438 was published Nov 10, 2025
Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who... High Unreviewed
CVE-2025-12437 was published Nov 10, 2025
A flaw was found in the xmlSetTreeDoc() function of the libxml2 XML parsing library. This... High Unreviewed
CVE-2025-12863 was published Nov 7, 2025
Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote... High Unreviewed
CVE-2025-11756 was published Nov 7, 2025
Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to... High Unreviewed
CVE-2025-11460 was published Nov 7, 2025
Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to... Low Unreviewed
CVE-2025-11219 was published Nov 7, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed
CVE-2023-43000 was published Nov 5, 2025
An issue was discovered in the GPU in Samsung Mobile Processor and Wearable Processor Exynos 1280... Moderate Unreviewed
CVE-2025-52910 was published Nov 4, 2025
An issue was discovered in the GPU driver in Samsung Mobile Processor Exynos 1480, 2400, 1580,... Moderate Unreviewed
CVE-2025-54335 was published Nov 4, 2025
In pda, there is a possible escalation of privilege due to use after free. This could lead to... Moderate Unreviewed
CVE-2025-20744 was published Nov 4, 2025
In clkdbg, there is a possible escalation of privilege due to use after free. This could lead to... Moderate Unreviewed
CVE-2025-20743 was published Nov 4, 2025
In apusys, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20745 was published Nov 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database