GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,576
Composer 4,462
Erlang 33
GitHub Actions 22
Go 2,159
Maven 5,338
npm 3,820
NuGet 696
pip 3,502
Pub 12
RubyGems 903
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,503

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,845 advisories

Filter by severity

Sort by

Least recently updated

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27170 was published Mar 11, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27179 was published Mar 11, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27176 was published Mar 11, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an out-of-bounds read... Moderate Unreviewed

CVE-2025-24448 was published Mar 11, 2025

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... Moderate Unreviewed

CVE-2025-27163 was published Mar 11, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an out-of-bounds read... Moderate Unreviewed

CVE-2025-24449 was published Mar 11, 2025

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... Moderate Unreviewed

CVE-2025-24431 was published Mar 11, 2025

Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service... Moderate Unreviewed

CVE-2025-24997 was published Mar 11, 2025

Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker... Moderate Unreviewed

CVE-2025-24984 was published Mar 11, 2025

Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. Moderate Unreviewed

CVE-2025-24992 was published Mar 11, 2025

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate... Moderate Unreviewed

CVE-2025-24988 was published Mar 11, 2025

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform... Moderate Unreviewed

CVE-2025-24996 was published Mar 11, 2025

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally. Moderate Unreviewed

CVE-2025-24991 was published Mar 11, 2025

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate... Moderate Unreviewed

CVE-2025-24987 was published Mar 11, 2025

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform... Moderate Unreviewed

CVE-2025-24054 was published Mar 11, 2025

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose... Moderate Unreviewed

CVE-2025-24055 was published Mar 11, 2025

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate... Moderate Unreviewed

CVE-2025-21199 was published Mar 11, 2025

Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an... Moderate Unreviewed

CVE-2025-0149 was published Mar 11, 2025

Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker... Moderate Unreviewed

CVE-2025-21247 was published Mar 11, 2025

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3... Moderate Unreviewed

CVE-2024-56338 was published Mar 11, 2025

A client-side enforcement of server-side security vulnerability [CWE-602] in Fortinet... Moderate Unreviewed

CVE-2024-52960 was published Mar 11, 2025

An improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed

CVE-2024-54026 was published Mar 11, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... Moderate Unreviewed

CVE-2024-55597 was published Mar 11, 2025

Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated... Moderate Unreviewed

CVE-2024-51322 was published Mar 11, 2025

Two improper neutralization of special elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed

CVE-2024-33501 was published Mar 11, 2025

Previous 1 2 3 4 5 6 7 8 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,845 advisories