Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,003
Maven
5,000+
npm
4,732
NuGet
788
pip
4,341
Pub
12
RubyGems
987
Rust
1,137
Swift
50
Unreviewed advisories
All unreviewed
5,000+

656 advisories

Loading
A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnn_backend_tf.c source... Low Unreviewed
CVE-2025-12343 was published Feb 18, 2026
MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in... Moderate Unreviewed
CVE-2026-25556 was published Feb 6, 2026
In imgsys, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2026-20415 was published Feb 2, 2026
A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which... Moderate Unreviewed
CVE-2025-57785 was published Jan 26, 2026
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on... High Unreviewed
CVE-2026-21918 was published Jan 15, 2026
CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end... High Unreviewed
CVE-2025-13844 was published Jan 15, 2026
Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this... High Unreviewed
CVE-2025-68968 was published Jan 14, 2026
Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege... High Unreviewed
CVE-2026-20832 was published Jan 13, 2026
Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-20863 was published Jan 13, 2026
Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC... Moderate Unreviewed
CVE-2026-20026 was published Jan 7, 2026
Memory Corruption when multiple threads concurrently access and modify shared resources. High Unreviewed
CVE-2025-47356 was published Jan 7, 2026
Memory corruption occurs when a secure application is launched on a device with insufficient memory. High Unreviewed
CVE-2025-47396 was published Jan 7, 2026
In seninf, there is a possible memory corruption due to a race condition. This could lead to... High Unreviewed
CVE-2025-20801 was published Jan 6, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local... High Unreviewed
CVE-2025-20781 was published Jan 6, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20786 was published Jan 6, 2026
In aocc_read of aoc_channel_dev.c, there is a possible double free due to improper locking. This... High Unreviewed
CVE-2025-36919 was published Dec 11, 2025
Withdrawn Advisory: ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family Moderate
CVE-2025-65955 was published for Magick.NET-Q16-AnyCPU (NuGet) Dec 3, 2025 withdrawn
LuiginoC
Credited to LuiginoC
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20775 was published Dec 2, 2025
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20772 was published Dec 2, 2025
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20773 was published Dec 2, 2025
In aee daemon, there is a possible system crash due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2025-20765 was published Dec 2, 2025
Double free in Microsoft Wireless Provisioning System allows an authorized attacker to elevate... High Unreviewed
CVE-2025-62219 was published Nov 11, 2025
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-59505 was published Nov 11, 2025
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix list... High Unreviewed
CVE-2022-49686 was published Oct 24, 2025
In the Linux kernel, the following vulnerability has been resolved: ath10k: skip ath10k_halt... High Unreviewed
CVE-2022-49519 was published Oct 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database