Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

5,833 advisories

Loading
A Use After Free vulnerability was identified in the 802.1X authentication daemon (dot1xd) of... High Unreviewed
CVE-2026-21908 was published Jan 15, 2026
A Use After Free vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS and... High Unreviewed
CVE-2026-21921 was published Jan 15, 2026
CWE-416: Use After Free vulnerability that could cause remote code execution when the end user... High Unreviewed
CVE-2025-13845 was published Jan 15, 2026
FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE(). Critical Unreviewed
CVE-2025-70968 was published Jan 14, 2026
Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2026-21287 was published Jan 13, 2026
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-21219 was published Jan 13, 2026
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-20950 was published Jan 13, 2026
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-20952 was published Jan 13, 2026
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-20953 was published Jan 13, 2026
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20920 was published Jan 13, 2026
Use after free in Windows Management Services allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20923 was published Jan 13, 2026
Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized... High Unreviewed
CVE-2026-20854 was published Jan 13, 2026
Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20859 was published Jan 13, 2026
Use after free in Windows Management Services allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20865 was published Jan 13, 2026
Use after free in Windows DWM allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-20842 was published Jan 13, 2026
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20870 was published Jan 13, 2026
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-20871 was published Jan 13, 2026
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2025-10865 was published Jan 13, 2026
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate... High Unreviewed
CVE-2026-20822 was published Jan 13, 2026
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2025-58411 was published Jan 13, 2026
Use-after-free in the IPC component. This vulnerability affects Firefox < 147, Firefox ESR < 115... High Unreviewed
CVE-2026-0882 was published Jan 13, 2026
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 147 and... Moderate Unreviewed
CVE-2026-0885 was published Jan 13, 2026
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147 and... Critical Unreviewed
CVE-2026-0884 was published Jan 13, 2026
Use after free in DualDAR prior to SMR Jan-2026 Release 1 allows local privileged attackers to... Moderate Unreviewed
CVE-2026-20968 was published Jan 9, 2026
Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to... High Unreviewed
CVE-2026-20971 was published Jan 9, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database