Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,607 advisories

Loading
PDF-XChange Editor App Object Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-6661 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-6640 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-6645 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-6644 was published Jun 26, 2025
Use after free in Metrics in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to... High Unreviewed
CVE-2025-6192 was published Jun 18, 2025
Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to... High Unreviewed
CVE-2025-5958 was published Jun 11, 2025
Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by a... High Unreviewed
CVE-2025-43577 was published Jun 10, 2025
Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by a... High Unreviewed
CVE-2025-43550 was published Jun 10, 2025
Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by a... High Unreviewed
CVE-2025-43573 was published Jun 10, 2025
Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by a... High Unreviewed
CVE-2025-43574 was published Jun 10, 2025
Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by a... High Unreviewed
CVE-2025-43576 was published Jun 10, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47957 was published Jun 10, 2025
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-47175 was published Jun 10, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47164 was published Jun 10, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47170 was published Jun 10, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47168 was published Jun 10, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-47165 was published Jun 10, 2025
Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-33071 was published Jun 10, 2025
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-43589 was published Jun 10, 2025
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-32712 was published Jun 10, 2025
An issue was discovered in Samsung Mobile Processor Exynos 980, 990, 1080, 2100, 1280, 2200, 1380... High Unreviewed
CVE-2025-23098 was published Jun 3, 2025
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is... High Unreviewed
CVE-2025-27031 was published Jun 3, 2025
Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. High Unreviewed
CVE-2025-27038 was published Jun 3, 2025
Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to... High Unreviewed
CVE-2025-5068 was published Jun 3, 2025
A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use... High Unreviewed
CVE-2025-5036 was published Jun 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database