Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5,324 advisories

Loading
Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults High
CVE-2025-54588 was published for github.com/envoyproxy/envoy (Go) Sep 15, 2025
agrawroh yanavlasov
phlax botengyao
OpenSynergy BlueSDK (aka Blue SDK) through 6.x has a Use-After-Free. The specific flaw exists... Critical Unreviewed
CVE-2024-45434 was published Sep 12, 2025
Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a... High Unreviewed
CVE-2025-10200 was published Sep 10, 2025
An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A use-after-free vulnerability... High Unreviewed
CVE-2025-57616 was published Sep 10, 2025
Substance3D - Modeler versions 1.22.2 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-54258 was published Sep 10, 2025
Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a... High Unreviewed
CVE-2025-54257 was published Sep 9, 2025
Premiere Pro versions 25.3, 24.6.5 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-54242 was published Sep 9, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-54896 was published Sep 9, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-54903 was published Sep 9, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-54904 was published Sep 9, 2025
Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-54906 was published Sep 9, 2025
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-54911 was published Sep 9, 2025
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-54908 was published Sep 9, 2025
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-54912 was published Sep 9, 2025
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54111 was published Sep 9, 2025
Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54112 was published Sep 9, 2025
Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network. Moderate Unreviewed
CVE-2025-54101 was published Sep 9, 2025
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to... High Unreviewed
CVE-2025-54102 was published Sep 9, 2025
Use after free in Windows Management Services allows an unauthorized attacker to elevate... High Unreviewed
CVE-2025-54103 was published Sep 9, 2025
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-53802 was published Sep 9, 2025
A vulnerability ( CVE-2024-38229 https://www.cve.org/CVERecord ) exists in EOL ASP.NET when... High Unreviewed
CVE-2025-36854 was published Sep 8, 2025
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... Moderate Unreviewed
CVE-2025-3212 was published Sep 8, 2025
In multiple locations, there is a possible way to escape chrome sandbox to attack android... High Unreviewed
CVE-2025-48543 was published Sep 4, 2025
In SendPacketToPeer of acl_arbiter.cc, there is a possible out of bounds read due to a use after... High Unreviewed
CVE-2025-48539 was published Sep 4, 2025
In multiple locations, there is a possible memory corruption due to a use after free. This could... High Unreviewed
CVE-2025-32332 was published Sep 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database