GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+
167 advisories
Filter by severity
Memory corruption while processing an IOCTL command with an arbitrary address.
High
Unreviewed
CVE-2025-27068
was published
Aug 6, 2025
Transient DOS while processing a frame with malformed shared-key descriptor.
High
Unreviewed
CVE-2025-27065
was published
Aug 6, 2025
Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.
High
Unreviewed
CVE-2025-49659
was published
Jul 8, 2025
Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate...
High
Unreviewed
CVE-2025-47973
was published
Jul 8, 2025
Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate...
High
Unreviewed
CVE-2025-47971
was published
Jul 8, 2025
Transient DOS while handling beacon frames with invalid IE header length.
High
Unreviewed
CVE-2025-27057
was published
Jul 8, 2025
Transient DOS while processing received beacon frame.
High
Unreviewed
CVE-2025-21454
was published
Jul 8, 2025
Memory corruption during the image encoding process.
High
Unreviewed
CVE-2025-27055
was published
Jul 8, 2025
Transient DOS may occur while processing malformed length field in SSID IEs.
High
Unreviewed
CVE-2025-21449
was published
Jul 8, 2025
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet...
High
Unreviewed
CVE-2025-21427
was published
Jul 8, 2025
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN...
High
Unreviewed
CVE-2025-21446
was published
Jul 8, 2025
Transient DOS while processing the tone measurement response buffer when the response buffer is...
High
Unreviewed
CVE-2025-27029
was published
Jun 3, 2025
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
High
Unreviewed
CVE-2024-53026
was published
Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with invalid header extension from...
High
Unreviewed
CVE-2024-53020
was published
Jun 3, 2025
Information disclosure may occur while processing goodbye RTCP packet from network.
High
Unreviewed
CVE-2024-53021
was published
Jun 3, 2025
Transient DOS while processing the EHT operation IE in the received beacon frame.
High
Unreviewed
CVE-2025-21463
was published
Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with improper header length for...
High
Unreviewed
CVE-2024-53019
was published
Jun 3, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before...
High
Unreviewed
CVE-2024-52879
was published
May 15, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before...
High
Unreviewed
CVE-2024-52877
was published
May 15, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before...
High
Unreviewed
CVE-2024-52878
was published
May 15, 2025
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
High
Unreviewed
CVE-2025-32704
was published
May 13, 2025
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.
High
Unreviewed
CVE-2025-21475
was published
May 6, 2025
Memory corruption while decoding of OTA messages from T3448 IE.
High
Unreviewed
CVE-2024-49846
was published
May 6, 2025
Transient DOS while parsing per STA profile in ML IE.
High
Unreviewed
CVE-2025-21459
was published
May 6, 2025
Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key...
High
Unreviewed
CVE-2024-49847
was published
May 6, 2025
ProTip!
Advisories are also available from the
GraphQL API