Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,691
Erlang
34
GitHub Actions
27
Go
2,276
Maven
5,000+
npm
3,931
NuGet
708
pip
3,699
Pub
12
RubyGems
919
Rust
957
Swift
38
Unreviewed advisories
All unreviewed
5,000+

107,418 advisories

Loading
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-32704 was published May 13, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-30393 was published May 13, 2025
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate... High Unreviewed
CVE-2025-32701 was published May 13, 2025
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to... High Unreviewed
CVE-2025-32709 was published May 13, 2025
Improper input validation in Windows Common Log File System Driver allows an authorized attacker... High Unreviewed
CVE-2025-32706 was published May 13, 2025
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed
CVE-2025-30376 was published May 13, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30378 was published May 13, 2025
InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-30318 was published May 13, 2025
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker... High Unreviewed
CVE-2025-30379 was published May 13, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-30386 was published May 13, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an... High Unreviewed
CVE-2025-30375 was published May 13, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an... High Unreviewed
CVE-2025-30383 was published May 13, 2025
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate... High Unreviewed
CVE-2025-30385 was published May 13, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30382 was published May 13, 2025
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-30377 was published May 13, 2025
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-30381 was published May 13, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30384 was published May 13, 2025
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over... High Unreviewed
CVE-2025-29964 was published May 13, 2025
Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny... High Unreviewed
CVE-2025-29971 was published May 13, 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-29977 was published May 13, 2025
Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-29976 was published May 13, 2025
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized... High Unreviewed
CVE-2025-29969 was published May 13, 2025
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code... High Unreviewed
CVE-2025-29978 was published May 13, 2025
Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using... High Unreviewed
CVE-2025-30310 was published May 13, 2025
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29973 was published May 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database