Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,315
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

821 advisories

Loading
A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these... High Unreviewed
CVE-2025-48797 was published May 27, 2025
IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17... High Unreviewed
CVE-2025-2900 was published May 14, 2025
Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-30330 was published May 13, 2025
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-30388 was published May 13, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-30376 was published May 13, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-29979 was published May 13, 2025
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over... High Unreviewed
CVE-2025-29964 was published May 13, 2025
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over... High Unreviewed
CVE-2025-29962 was published May 13, 2025
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over... High Unreviewed
CVE-2025-29963 was published May 13, 2025
Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-29966 was published May 13, 2025
Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to... High Unreviewed
CVE-2025-29967 was published May 13, 2025
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-24063 was published May 13, 2025
The LCD KVM over IP Switch CL5708IM has a Heap-based Buffer Overflow vulnerability, allowing... High Unreviewed
CVE-2025-3713 was published May 9, 2025
The LCD KVM over IP Switch CL5708IM has a Heap-based Buffer Overflow vulnerability, allowing... High Unreviewed
CVE-2025-3712 was published May 9, 2025
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32397 was published May 7, 2025
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32400 was published May 7, 2025
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32396 was published May 7, 2025
Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to... High Unreviewed
CVE-2025-4096 was published May 5, 2025
Tesla Model S oFono AT Command Heap-based Buffer Overflow Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6031 was published Apr 30, 2025
Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-1049 was published Apr 23, 2025
Luxion KeyShot Viewer KSP File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-1045 was published Apr 23, 2025
Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a... High Unreviewed
CVE-2025-3619 was published Apr 16, 2025
A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based... High Unreviewed
CVE-2025-2497 was published Apr 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1273 was published Apr 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1656 was published Apr 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database