Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,464
Erlang
33
GitHub Actions
22
Go
2,163
Maven
5,000+
npm
3,821
NuGet
696
pip
3,502
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

104,670 advisories

Loading
Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-26645 was published Mar 11, 2025
Substance3D - Designer versions 14.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-27172 was published Mar 11, 2025
An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions.... High Unreviewed
CVE-2025-24201 was published Mar 11, 2025
Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate... High Unreviewed
CVE-2025-25003 was published Mar 11, 2025
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-24994 was published Mar 11, 2025
Improper link resolution before file access ('link following') in Microsoft Windows allows an... High Unreviewed
CVE-2025-25008 was published Mar 11, 2025
Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate... High Unreviewed
CVE-2025-24998 was published Mar 11, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-26629 was published Mar 11, 2025
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-24075 was published Mar 11, 2025
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-24076 was published Mar 11, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-24082 was published Mar 11, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-24081 was published Mar 11, 2025
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-24083 was published Mar 11, 2025
Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to... High Unreviewed
CVE-2025-24084 was published Mar 11, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-24080 was published Mar 11, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-24079 was published Mar 11, 2025
Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate... High Unreviewed
CVE-2025-24983 was published Mar 11, 2025
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-24993 was published Mar 11, 2025
Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to... High Unreviewed
CVE-2025-24985 was published Mar 11, 2025
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized... High Unreviewed
CVE-2025-24995 was published Mar 11, 2025
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-24057 was published Mar 11, 2025
Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to... High Unreviewed
CVE-2025-24066 was published Mar 11, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-24051 was published Mar 11, 2025
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to... High Unreviewed
CVE-2025-24061 was published Mar 11, 2025
Incorrect conversion between numeric types in Windows Common Log File System Driver allows an... High Unreviewed
CVE-2025-24059 was published Mar 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database