Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,319
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

877 advisories

Loading
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper... Critical Unreviewed
CVE-2024-12084 was published Jan 15, 2025
A potential TOCTOU vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store... Moderate Unreviewed
CVE-2024-10253 was published Jan 15, 2025
A potential buffer overflow vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo... Moderate Unreviewed
CVE-2024-10254 was published Jan 15, 2025
Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-21139 was published Jan 14, 2025
Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-21137 was published Jan 14, 2025
Substance3D - Stager versions 3.0.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2025-21129 was published Jan 14, 2025
Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21382 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21411 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21409 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21417 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21413 was published Jan 14, 2025
Windows CSC Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21378 was published Jan 14, 2025
Microsoft Access Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21395 was published Jan 14, 2025
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21333 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21339 was published Jan 14, 2025
Microsoft Office Visio Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21356 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21302 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21306 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21305 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21303 was published Jan 14, 2025
Windows Digital Media Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21256 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21248 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21246 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21241 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21245 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database