Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,681
Maven
5,000+
npm
4,311
NuGet
760
pip
4,084
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

105 advisories

Loading
Heap-based Buffer Overflow, Out-of-bounds Read vulnerability in Avast Antivirus on MacOS when... Critical Unreviewed
CVE-2025-8351 was published Dec 1, 2025
libnftnl has Heap-based Buffer Overflow in nftnl::Batch::with_page_size (nftnl-rs) Critical
GHSA-2fjw-whxm-9v4q was published for nftnl (Rust) Nov 25, 2025
Security Point (Windows) of MaLion and MaLionCloud contains a heap-based buffer overflow... Critical Unreviewed
CVE-2025-64693 was published Nov 25, 2025
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to... Critical Unreviewed
CVE-2025-60724 was published Nov 11, 2025
A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig... Critical Unreviewed
CVE-2024-21795 was published Feb 20, 2024
Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep... Critical Unreviewed
CVE-2023-5841 was published Feb 1, 2024
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper... Critical Unreviewed
CVE-2024-12084 was published Jan 15, 2025
A heap-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig... Critical Unreviewed
CVE-2025-53557 was published Aug 25, 2025
A heap-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig... Critical Unreviewed
CVE-2025-53511 was published Aug 25, 2025
A heap-based buffer overflow vulnerability exists in the RHS2000 parsing functionality of The... Critical Unreviewed
CVE-2025-48005 was published Aug 25, 2025
A heap-based buffer overflow vulnerability exists in the ISHNE parsing functionality of The... Critical Unreviewed
CVE-2025-53853 was published Aug 25, 2025
A heap-based buffer overflow vulnerability exists in the Nex parsing functionality of The Biosig... Critical Unreviewed
CVE-2025-54462 was published Aug 25, 2025
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote... Critical Unreviewed
CVE-2025-20260 was published Jun 18, 2025
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-0572 was published Feb 15, 2022
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version... Critical Unreviewed
CVE-2023-27997 was published Jun 13, 2023
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-38812 was published Sep 17, 2024
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via... Critical Unreviewed
CVE-2019-3568 was published May 24, 2022
ExecuTorch vulnerable to Heap-based Buffer Overflow Critical
CVE-2025-54951 was published for executorch (Maven) Aug 8, 2025
Fidget-Grep
Credited to Fidget-Grep
ExecuTorch heap buffer overflow vulnerability Critical
CVE-2025-54949 was published for executorch (Maven) Aug 8, 2025
Fidget-Grep
Credited to Fidget-Grep
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA)... Critical Unreviewed
CVE-2025-20363 was published Sep 25, 2025
Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker... Critical Unreviewed
CVE-2025-47981 was published Jul 8, 2025
A heap-based buffer overflow vulnerability exists in the input parsing logic of Arcserve Unified... Critical Unreviewed
CVE-2025-34522 was published Aug 28, 2025
A heap-based buffer overflow vulnerability exists in the exists in the network-facing input... Critical Unreviewed
CVE-2025-34523 was published Aug 28, 2025
BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several... Critical Unreviewed
CVE-2025-40906 was published May 16, 2025
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a... Critical Unreviewed
CVE-2025-53766 was published Aug 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database