Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+

103 advisories

Loading
Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to... High Unreviewed
CVE-2025-55230 was published Aug 21, 2025
Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to... Critical Unreviewed
CVE-2025-50165 was published Aug 12, 2025
Untrusted Pointer Dereference for some Intel(R) QuickAssist Technology software before version 2... Moderate Unreviewed
CVE-2025-20090 was published Aug 12, 2025
Memory corruption while processing DDI command calls. High Unreviewed
CVE-2025-27069 was published Aug 6, 2025
Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an... High Unreviewed
CVE-2025-49661 was published Jul 8, 2025
Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate... High Unreviewed
CVE-2025-47985 was published Jul 8, 2025
Memory corruption during dynamic process creation call when client is only passing address and... High Unreviewed
CVE-2025-21486 was published Jun 3, 2025
Untrusted pointer dereference for some Intel(R) Graphics Drivers may allow an authenticated user... Moderate Unreviewed
CVE-2025-20018 was published May 13, 2025
Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate... High Unreviewed
CVE-2025-29812 was published Apr 8, 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-27747 was published Apr 8, 2025
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate... High Unreviewed
CVE-2025-27739 was published Apr 8, 2025
An untrusted pointer dereference vulnerability in Ivanti Endpoint Manager before version 2024 SU1... Moderate Unreviewed
CVE-2025-22464 was published Apr 8, 2025
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-24083 was published Mar 11, 2025
Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to... High Unreviewed
CVE-2025-24084 was published Mar 11, 2025
Software installed and run as a non-privileged user may conduct improper GPU system calls to... Moderate Unreviewed
CVE-2024-12576 was published Mar 7, 2025
Memory corruption while doing Escape call when user provides valid kernel address in the place of... High Unreviewed
CVE-2024-53033 was published Mar 3, 2025
Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync... High Unreviewed
CVE-2024-53034 was published Mar 3, 2025
Untrusted Pointer Dereference in I/O subsystem for some Intel(R) QAT software before version 2.0... Moderate Unreviewed
CVE-2023-32277 was published Feb 13, 2025
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21381 was published Feb 11, 2025
Windows Core Messaging Elevation of Privileges Vulnerability High Unreviewed
CVE-2025-21358 was published Feb 11, 2025
Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from... High Unreviewed
CVE-2024-45584 was published Feb 3, 2025
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21354 was published Jan 14, 2025
Microsoft Word Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21363 was published Jan 14, 2025
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49090 was published Dec 12, 2024
Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and... Moderate Unreviewed
CVE-2024-33039 was published Dec 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database