Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
47
Go
3,340
Maven
5,000+
npm
5,000+
NuGet
881
pip
4,549
Pub
12
RubyGems
1,012
Rust
1,202
Swift
51
Unreviewed advisories
All unreviewed
5,000+

146 advisories

Loading
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to... High Unreviewed
CVE-2025-62556 was published Dec 9, 2025
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively... High Unreviewed
CVE-2025-24990 was published Oct 14, 2025
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to... High Unreviewed
CVE-2025-62200 was published Nov 11, 2025
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-60713 was published Nov 11, 2025
Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an... High Unreviewed
CVE-2025-60719 was published Nov 11, 2025
Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate... High Unreviewed
CVE-2025-60703 was published Nov 11, 2025
Untrusted pointer dereference in Storvsp.sys Driver allows an authorized attacker to deny service... Moderate Unreviewed
CVE-2025-60708 was published Nov 11, 2025
Untrusted pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. within... Moderate Unreviewed
CVE-2025-27710 was published Nov 11, 2025
Untrusted pointer dereference for some Intel QuickAssist Technology software before version 2.6.0... Moderate Unreviewed
CVE-2025-32446 was published Nov 11, 2025
An issue was discovered in NPU in Samsung Mobile Processor Exynos through July 2025. There is an... Moderate Unreviewed
CVE-2025-54331 was published Nov 4, 2025
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a... High Unreviewed
CVE-2023-42772 was published Sep 16, 2024
Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine. Critical Unreviewed
CVE-2024-36461 was published Aug 12, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-35250 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21338 was published Feb 13, 2024
Windows DWM Core Library Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36033 was published Nov 14, 2023
Windows TPM Device Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-29360 was published Jun 14, 2023
Untrusted pointer dereference in Windows Device Association Broker service allows an authorized... High Unreviewed
CVE-2025-55677 was published Oct 14, 2025
Memory corruption while processing escape commands from userspace. High Unreviewed
CVE-2025-47338 was published Oct 9, 2025
Memory corruption while performing SCM call with malformed inputs. High Unreviewed
CVE-2025-27060 was published Oct 9, 2025
Memory corruption while processing camera platform driver IOCTL calls. High Unreviewed
CVE-2025-27048 was published Oct 9, 2025
Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows... High Unreviewed
CVE-2025-1255 was published Sep 23, 2025
Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows... High Unreviewed
CVE-2025-4993 was published Sep 23, 2025
Untrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-53801 was published Sep 9, 2025
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to... High Unreviewed
CVE-2025-54905 was published Sep 9, 2025
Improper input validation in the AMD Graphics Driver could allow an attacker to supply a... High Unreviewed
CVE-2024-36352 was published Sep 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database