Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,466 advisories

Loading
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to... High Unreviewed
CVE-2025-11234 was published Oct 3, 2025
VT STUDIO versions 8.53 and prior contain a use after free vulnerability. If the product uses a... High Unreviewed
CVE-2025-61692 was published Oct 2, 2025
A heap-use-after free in the PdfTokenizer::ReadDictionary function of podofo v0.10.0 to v0.10.5... High Unreviewed
CVE-2025-46205 was published Oct 1, 2025
Use after free in WebRTC in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to... High Unreviewed
CVE-2025-10501 was published Sep 24, 2025
Use after free in Dawn in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to... High Unreviewed
CVE-2025-10500 was published Sep 24, 2025
Memory corruption while encoding the image data. High Unreviewed
CVE-2025-47327 was published Sep 24, 2025
Memory corruption while processing message in guest VM. High Unreviewed
CVE-2025-27077 was published Sep 24, 2025
Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference... High Unreviewed
CVE-2025-27037 was published Sep 24, 2025
Memory corruption while handling repeated memory unmap requests from guest VM. High Unreviewed
CVE-2025-47315 was published Sep 24, 2025
Use After Free vulnerability in RTI Connext Professional (Security Plugins) allows File... Moderate Unreviewed
CVE-2025-8410 was published Sep 23, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to... Moderate Unreviewed
CVE-2025-25177 was published Sep 22, 2025
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59215 was published Sep 19, 2025
Ashlar-Vellum Cobalt LI File Parsing Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7993 was published Sep 17, 2025
A Use After Free vulnerability affecting the PAR file reading procedure in SOLIDWORKS eDrawings... High Unreviewed
CVE-2025-9449 was published Sep 17, 2025
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird... High Unreviewed
CVE-2025-10527 was published Sep 16, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43368 was published Sep 16, 2025
Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults High
CVE-2025-54588 was published for github.com/envoyproxy/envoy (Go) Sep 15, 2025
agrawroh yanavlasov
phlax botengyao
Credited to agrawroh, yanavlasov, phlax, and botengyao
OpenSynergy BlueSDK (aka Blue SDK) through 6.x has a Use-After-Free. The specific flaw exists... Critical Unreviewed
CVE-2024-45434 was published Sep 12, 2025
Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a... High Unreviewed
CVE-2025-10200 was published Sep 10, 2025
An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A use-after-free vulnerability... High Unreviewed
CVE-2025-57616 was published Sep 10, 2025
Substance3D - Modeler versions 1.22.2 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-54258 was published Sep 10, 2025
Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a... High Unreviewed
CVE-2025-54257 was published Sep 9, 2025
Premiere Pro versions 25.3, 24.6.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-54242 was published Sep 9, 2025
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-54911 was published Sep 9, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-54903 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database