Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

880 advisories

Loading
Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This... Moderate Unreviewed
CVE-2025-0634 was published Jun 30, 2025
Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-6555 was published Jun 24, 2025
An authenticated user may trigger a use after free that may result in MongoDB Server crash and... Moderate Unreviewed
CVE-2025-6706 was published Jun 26, 2025
Possible kernel exceptions caused by reading and writing kernel heap data after free. Moderate Unreviewed
CVE-2025-46710 was published Jun 16, 2025
A Linux user opening the print preview dialog could have caused the browser to crash. This... Moderate Unreviewed
CVE-2024-0746 was published Jan 23, 2024
A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a... Moderate Unreviewed
CVE-2024-0752 was published Jan 23, 2024
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... Moderate Unreviewed
CVE-2025-47106 was published Jun 10, 2025
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-3189 was published May 13, 2022
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23106 was published Jun 4, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile... Moderate Unreviewed
CVE-2025-23101 was published Jun 4, 2025
There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`.... Moderate Unreviewed
CVE-2025-4516 was published May 15, 2025
Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed
CVE-2024-53015 was published Jun 3, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... Moderate Unreviewed
CVE-2025-23104 was published Jun 2, 2025
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-5283 was published May 27, 2025
In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to... Moderate Unreviewed
CVE-2024-23848 was published Jan 23, 2024
A vulnerability was found in HDF5 up to 1.14.6. It has been rated as problematic. Affected by... Moderate Unreviewed
CVE-2025-2913 was published Mar 28, 2025
mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an... Moderate Unreviewed
CVE-2022-41222 was published Sep 22, 2022
A flaw was found in command/gpg. In some scenarios, hooks created by loaded modules are not... Moderate Unreviewed
CVE-2025-0622 was published Feb 18, 2025
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid racing on... Moderate Unreviewed
CVE-2021-47335 was published May 21, 2024
Pixmeo OsiriX MD is vulnerable to a local use after free scenario, which could allow an attacker... Moderate Unreviewed
CVE-2025-31946 was published May 9, 2025
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called... Moderate Unreviewed
CVE-2018-20623 was published May 13, 2022
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix management of... Moderate Unreviewed
CVE-2025-22024 was published Apr 16, 2025
Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations. Moderate Unreviewed
CVE-2024-45583 was published May 6, 2025
Memory corruption during concurrent access to server info object due to unprotected critical field. Moderate Unreviewed
CVE-2024-45562 was published May 6, 2025
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix NULL ptr... Moderate Unreviewed
CVE-2024-53185 was published Dec 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database