Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

939 advisories

Loading
An out-of-bounds write vulnerability exists in the ma_dr_flac__decode_samples__lpc functionality... High Unreviewed
CVE-2024-41147 was published Mar 4, 2025
Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence... High Unreviewed
CVE-2025-1943 was published Mar 4, 2025
Buffer overflow in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2024-27245 was published Feb 25, 2025
Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of... High Unreviewed
CVE-2024-45421 was published Feb 25, 2025
A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in... High Unreviewed
CVE-2025-26596 was published Feb 25, 2025
A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a... High Unreviewed
CVE-2025-26597 was published Feb 25, 2025
OpenH264 Rust API Openh264 Decoding Functions Heap Overflow Vulnerability High
GHSA-5pmw-9j92-3c4c was published for openh264-sys2 (Rust) Feb 24, 2025
Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to... High Unreviewed
CVE-2025-0999 was published Feb 19, 2025
Heap buffer overflow in GPU in Google Chrome on Android prior to 133.0.6943.126 allowed a remote... High Unreviewed
CVE-2025-1426 was published Feb 19, 2025
Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows... Moderate Unreviewed
CVE-2025-0633 was published Feb 19, 2025
A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger... Moderate Unreviewed
CVE-2025-22920 was published Feb 19, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6. A possible heap... Moderate Unreviewed
CVE-2024-37601 was published Feb 14, 2025
Heap-based buffer overflow in BMC Firmware for the Intel(R) Server Board S2600WF, Intel(R) Server... High Unreviewed
CVE-2023-31276 was published Feb 13, 2025
NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a heap-based... Moderate Unreviewed
CVE-2024-0145 was published Feb 12, 2025
Mintty Sixel Image Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-1052 was published Feb 11, 2025
PDF-XChange Editor RTF File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-0903 was published Feb 11, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21407 was published Feb 11, 2025
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21418 was published Feb 11, 2025
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21410 was published Feb 11, 2025
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21390 was published Feb 11, 2025
Windows Core Messaging Elevation of Privileges Vulnerability High Unreviewed
CVE-2025-21414 was published Feb 11, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21371 was published Feb 11, 2025
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21376 was published Feb 11, 2025
Microsoft Digest Authentication Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21368 was published Feb 11, 2025
Microsoft Digest Authentication Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21369 was published Feb 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database