Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,076
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,677 advisories

Loading
Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-21122 was published Jan 14, 2025
Substance3D - Stager versions 3.0.4 and earlier are affected by a Stack-based Buffer Overflow... High Unreviewed
CVE-2025-21128 was published Jan 14, 2025
Invoice Ninja is vulnerable to authenticated Server-Side Request Forgery (SSRF) allowing for... High Unreviewed
CVE-2025-0474 was published Jan 14, 2025
Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-21130 was published Jan 14, 2025
Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-21132 was published Jan 14, 2025
Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow... High Unreviewed
CVE-2024-48858 was published Jan 14, 2025
Microsoft Access Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21395 was published Jan 14, 2025
Windows upnphost.dll Denial of Service Vulnerability High Unreviewed
CVE-2025-21389 was published Jan 14, 2025
Authenticated command injection vulnerability in the command line interface of a network... High Unreviewed
CVE-2025-23052 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21409 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21417 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21413 was published Jan 14, 2025
An authenticated parameter injection vulnerability exists in the web-based management interface... High Unreviewed
CVE-2025-23051 was published Jan 14, 2025
Windows CSC Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21378 was published Jan 14, 2025
Visual Studio Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21405 was published Jan 14, 2025
Microsoft Office OneNote Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21402 was published Jan 14, 2025
Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21382 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21411 was published Jan 14, 2025
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21335 was published Jan 14, 2025
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21334 was published Jan 14, 2025
Microsoft Word Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21363 was published Jan 14, 2025
Microsoft Office Visio Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21356 was published Jan 14, 2025
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21365 was published Jan 14, 2025
Windows Remote Desktop Services Denial of Service Vulnerability High Unreviewed
CVE-2025-21330 was published Jan 14, 2025
Microsoft Access Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21366 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database