Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

532 advisories

Loading
A use-after-free vulnerability occurs when redirecting focus handling which results in a... Critical Unreviewed
CVE-2017-5434 was published May 14, 2022
Use-after-free vulnerability in the mozilla::nsTextNodeDirectionalityMap::RemoveElementFromMap... Critical Unreviewed
CVE-2016-5280 was published May 14, 2022
Use-after-free vulnerability in the nsFrameManager::CaptureFrameState function in Mozilla Firefox... Critical Unreviewed
CVE-2016-5274 was published May 14, 2022
Use-after-free vulnerability in the mozilla::a11y::DocAccessible::ProcessInvalidationList... Critical Unreviewed
CVE-2016-5276 was published May 14, 2022
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when... Critical Unreviewed
CVE-2021-20204 was published May 24, 2022
Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some... Critical Unreviewed
CVE-2024-43491 was published Sep 10, 2024
The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were... Critical Unreviewed
CVE-2024-8384 was published Sep 3, 2024
Concurrent removals of certain anonymous shared memory mappings by using the UMTX_SHM_DESTROY sub... Critical Unreviewed
CVE-2024-43102 was published Sep 5, 2024
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB... Critical Unreviewed
CVE-2024-22253 was published Mar 5, 2024
Windows Network Virtualization Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38159 was published Aug 13, 2024
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38140 was published Aug 13, 2024
Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38199 was published Aug 13, 2024
Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free. This... Critical Unreviewed
CVE-2024-7528 was published Aug 6, 2024
Incorrect garbage collection interaction could have led to a use-after-free. This vulnerability... Critical Unreviewed
CVE-2024-7530 was published Aug 6, 2024
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS... Critical Unreviewed
CVE-2024-40782 was published Jul 30, 2024
Inappropriate pointer order of laser_scan_filter_.reset() and tf_listener_.reset() (amcl_node.cpp... Critical Unreviewed
CVE-2024-25198 was published Feb 20, 2024
In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free.... Critical Unreviewed
CVE-2023-40115 was published Feb 16, 2024
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier)... Critical Unreviewed
CVE-2021-28550 was published May 24, 2022
Use after free in Indexed DB API in Google Chrome prior to 93.0.4577.82 allowed a remote attacker... Critical Unreviewed
CVE-2021-30633 was published May 24, 2022
A remote code execution vulnerability exists in Remote Desktop Services formerly known as... Critical Unreviewed
CVE-2019-0708 was published May 24, 2022
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix invalid... Critical Unreviewed
CVE-2024-38612 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id... Critical Unreviewed
CVE-2021-47378 was published May 21, 2024
Use after free in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to... Critical Unreviewed
CVE-2024-4949 was published May 15, 2024
Multiple WebRTC threads could have claimed a newly connected audio input leading to use-after... Critical Unreviewed
CVE-2024-4764 was published May 14, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-30080 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database