Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+

932 advisories

Loading
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-49673 was published Jul 8, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-49674 was published Jul 8, 2025
Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to... High Unreviewed
CVE-2025-47987 was published Jul 8, 2025
A heap-based buffer overflow vulnerability exists in VS6Sim.exe contained in V-SFT and TELLUS... High Unreviewed
CVE-2025-50130 was published Jul 8, 2025
Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code... High Unreviewed
CVE-2025-27487 was published Apr 8, 2025
Pillow vulnerability can cause write buffer overflow on BCn encoding High
CVE-2025-48379 was published for pillow (pip) Jul 1, 2025
A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an... High Unreviewed
CVE-2023-28905 was published Jun 28, 2025
PDF-XChange Editor GIF File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-6660 was published Jun 26, 2025
Autel MaxiCharger AC Wallbox Commercial DLB_SlaveRegister Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-5830 was published Jun 26, 2025
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There... High Unreviewed
CVE-2021-43305 was published Mar 16, 2022
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There... High Unreviewed
CVE-2021-43304 was published Mar 16, 2022
Sony XAV-AX8500 Bluetooth AVCTP Protocol Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-5479 was published Jun 23, 2025
Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-5477 was published Jun 23, 2025
libiec61850 v1.5 was discovered to contain a heap overflow via the BerEncoder_encodeLength... High Unreviewed
CVE-2024-36702 was published Jun 11, 2024
A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues... High Unreviewed
CVE-2025-49850 was published Jun 17, 2025
PyTorch heap buffer overflow vulnerability High
CVE-2024-31580 was published for torch (pip) Apr 17, 2024
levpachmanov
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-32717 was published Jun 11, 2025
InCopy versions 20.2, 19.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-47107 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-47169 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-47162 was published Jun 10, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-47174 was published Jun 10, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-33064 was published Jun 10, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-33066 was published Jun 10, 2025
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker... High Unreviewed
CVE-2025-32713 was published Jun 10, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2025-30317 was published Jun 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database