GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,699
Composer 4,850
Erlang 36
GitHub Actions 34
Go 2,480
Maven 5,894
npm 4,097
NuGet 734
pip 3,910
Pub 12
RubyGems 945
Rust 1,014
Swift 39

Unreviewed advisories

All unreviewed 267,609

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

932 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12... High Unreviewed

CVE-2025-34164 was published Aug 30, 2025

NanoMQ 0.17.5 is vulnerable to heap-buffer-overflow in the conn_handler function of mqtt_parser.c... High Unreviewed

CVE-2023-34488 was published Jun 12, 2023

ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow High

CVE-2025-57803 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 26, 2025

A maliciously crafted SKP file, when linked or imported into Autodesk Revit, can be used to cause... High Unreviewed

CVE-2024-11608 was published Dec 9, 2024

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL... High Unreviewed

CVE-2025-35984 was published Aug 26, 2025

A memory corruption vulnerability exists in the PSD RLE Decoding functionality of the SAIL Image... High Unreviewed

CVE-2025-53085 was published Aug 26, 2025

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL... High Unreviewed

CVE-2025-50129 was published Aug 26, 2025

imagemagick: heap-buffer overflow read in MNG magnification with alpha High

CVE-2025-55004 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025

IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17... High Unreviewed

CVE-2025-2900 was published May 14, 2025

A maliciously crafted 3DM file, when linked or imported into certain Autodesk products, can force... High Unreviewed

CVE-2025-5043 was published Jul 29, 2025

A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed

CVE-2025-1651 was published Mar 13, 2025

A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based... High Unreviewed

CVE-2025-5040 was published Jul 10, 2025

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can... High Unreviewed

CVE-2025-1275 was published Apr 15, 2025

A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based... High Unreviewed

CVE-2025-2497 was published Apr 15, 2025

A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed

CVE-2025-1656 was published Apr 15, 2025

A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed

CVE-2025-1273 was published Apr 15, 2025

A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed

CVE-2025-1429 was published Mar 13, 2025

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204,... High Unreviewed

CVE-2025-46269 was published Aug 19, 2025

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204,... High Unreviewed

CVE-2025-52584 was published Aug 19, 2025

MuseScore CAP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2023-44428 was published May 3, 2024

Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a... High Unreviewed

CVE-2021-34583 was published May 24, 2022

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed

CVE-2025-53737 was published Aug 12, 2025

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2025-1051 was published Jun 2, 2025

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed

CVE-2025-53741 was published Aug 12, 2025

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed

CVE-2025-53732 was published Aug 12, 2025

Previous1…38 Next

Previous 1 2 3 4 5 … 37 38 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

932 advisories