Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,033 advisories

Loading
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-54894 was published Sep 9, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-54113 was published Sep 9, 2025
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54091 was published Sep 9, 2025
toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor High
GHSA-pfp7-vxgr-83pw was published for toodee (Rust) Sep 9, 2025
JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when... High Unreviewed
CVE-2025-40928 was published Sep 8, 2025
JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a... High Unreviewed
CVE-2025-40930 was published Sep 8, 2025
A vulnerability (CVE-2025-21172) exists in msdia140.dll due to integer overflow and heap-based... High Unreviewed
CVE-2025-36853 was published Sep 8, 2025
In Skia, there is a possible out of bounds write due to a heap buffer overflow. This could lead... High Unreviewed
CVE-2025-32318 was published Sep 5, 2025
In multiple functions of NdkMediaCodec.cpp, there is a possible out of bounds write due to a heap... High Unreviewed
CVE-2025-26455 was published Sep 5, 2025
In appendFrom of Parcel.cpp, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2025-32325 was published Sep 4, 2025
In avrc_vendor_msg of avrc_opt.cc, there is a possible out of bounds write due to a heap buffer... High Unreviewed
CVE-2024-49714 was published Sep 4, 2025
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write... High Unreviewed
CVE-2025-36907 was published Sep 4, 2025
In ConvertReductionOp of darwinn_mlir_converter_aidl.cc, there is a possible out of bounds write... High Unreviewed
CVE-2025-36906 was published Sep 4, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8300 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation... High Unreviewed
CVE-2025-8302 was published Sep 2, 2025
Realtek RTL8811AU rtwlanu.sys N6CSet_DOT11_CIPHER_DEFAULT_KEY Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8301 was published Sep 2, 2025
Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local... High Unreviewed
CVE-2025-8299 was published Sep 2, 2025
arenavec has multiple memory corruption vulnerabilities in safe APIs High
GHSA-3632-54q8-m96x was published for arenavec (Rust) Sep 2, 2025
A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12... High Unreviewed
CVE-2025-34164 was published Aug 30, 2025
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow High
CVE-2025-57803 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 26, 2025
mescuwa
Credited to mescuwa
A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL... High Unreviewed
CVE-2025-35984 was published Aug 26, 2025
A memory corruption vulnerability exists in the PSD RLE Decoding functionality of the SAIL Image... High Unreviewed
CVE-2025-53085 was published Aug 26, 2025
A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL... High Unreviewed
CVE-2025-50129 was published Aug 26, 2025
imagemagick: heap-buffer overflow read in MNG magnification with alpha High
CVE-2025-55004 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204,... High Unreviewed
CVE-2025-46269 was published Aug 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database