Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,618
Maven
5,000+
npm
4,255
NuGet
760
pip
4,043
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,376 advisories

Loading
In pda, there is a possible escalation of privilege due to use after free. This could lead to... Unknown Unreviewed
CVE-2025-20744 was published Nov 4, 2025
In clkdbg, there is a possible escalation of privilege due to use after free. This could lead to... Unknown Unreviewed
CVE-2025-20743 was published Nov 4, 2025
In apusys, there is a possible memory corruption due to use after free. This could lead to local... Unknown Unreviewed
CVE-2025-20745 was published Nov 4, 2025
A use after free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43478 was published Nov 4, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43457 was published Nov 4, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43438 was published Nov 4, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43434 was published Nov 4, 2025
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Moderate Unreviewed
CVE-2025-43432 was published Nov 4, 2025
NetSurf 3.11 is vulnerable to Use After Free in dom_node_set_text_content function. Moderate Unreviewed
CVE-2025-29699 was published Nov 3, 2025
Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap use-after-free vulnerability in... Critical Unreviewed
CVE-2025-57108 was published Oct 31, 2025
Kitware VTK (Visualization Toolkit) 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter... Moderate Unreviewed
CVE-2025-57109 was published Oct 30, 2025
A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client... High Unreviewed
CVE-2025-62230 was published Oct 30, 2025
A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension... High Unreviewed
CVE-2025-62229 was published Oct 30, 2025
Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-11465 was published Oct 29, 2025
A use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc.... High Unreviewed
CVE-2025-53814 was published Oct 28, 2025
Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after... Critical Unreviewed
CVE-2025-12380 was published Oct 28, 2025
A vulnerability was detected in Kamailio 5.5. The affected element is the function... Moderate Unreviewed
CVE-2025-12205 was published Oct 27, 2025
In the Linux kernel, the following vulnerability has been resolved: tty: goldfish: Fix free_irq(... High Unreviewed
CVE-2022-49724 was published Oct 24, 2025
A flaw was found in the asynchronous message queue handling of the libsoup library, widely used... High Unreviewed
CVE-2025-12105 was published Oct 23, 2025
An authorized user may crash the MongoDB server by causing buffer over-read. This can be done by... Moderate Unreviewed
CVE-2025-11979 was published Oct 20, 2025
Use After Free in WebSocket server implementation in lws_handshake_server in warmcat... Moderate Unreviewed
CVE-2025-11677 was published Oct 20, 2025
In quickjs, in js_print_object, when printing an array, the function first fetches the array... High Unreviewed
CVE-2025-62490 was published Oct 16, 2025
A Use-After-Free (UAF) vulnerability exists in the QuickJS engine's standard library when... High Unreviewed
CVE-2025-62491 was published Oct 16, 2025
When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server,... High Unreviewed
CVE-2025-48008 was published Oct 15, 2025
Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that... High Unreviewed
CVE-2025-54279 was published Oct 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database