GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,296
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
164 advisories
Filter by severity
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as...
Moderate
Unreviewed
CVE-2017-14934
was published
May 13, 2022
In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled ...
Low
Unreviewed
CVE-2025-46393
was published
Apr 23, 2025
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer...
Moderate
Unreviewed
CVE-2022-32630
was published
Dec 5, 2022
In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after...
Low
Unreviewed
CVE-2025-43965
was published
Apr 23, 2025
quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading...
Moderate
Unreviewed
CVE-2025-46688
was published
Apr 27, 2025
OpenVM allows the byte decomposition of pc in AUIPC chip to overflow
High
CVE-2025-46723
was published
for
openvm
(Rust)
May 5, 2025
Memory corruption while processing video packets received from video firmware.
High
Unreviewed
CVE-2025-27042
was published
Jul 8, 2025
An Incorrect Calculation of Buffer Size vulnerability in the routing protocol daemon (rpd) of...
High
Unreviewed
CVE-2025-52955
was published
Jul 11, 2025
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Fix...
High
Unreviewed
CVE-2024-46729
was published
Sep 18, 2024
Memory corruption during PlayReady APP usecase while processing TA commands.
High
Unreviewed
CVE-2025-27053
was published
Oct 9, 2025
Microsoft Defender Remote Code Execution Vulnerability
High
Unreviewed
CVE-2021-1647
was published
May 24, 2022
IBM DB2 High Performance Unload 6.1.0.3, 5.1.0.1, 6.1.0.2, 6.5, 6.5.0.0 IF1, 6.1.0.1, 6.1, 5.1, 6...
Moderate
Unreviewed
CVE-2025-33126
was published
Oct 28, 2025
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
ImageMagick BlobStream Forward-Seek Under-Allocation
Low
CVE-2025-57807
was published
for
Magick.NET-Q16-HDRI-OpenMP-arm64
(NuGet)
Sep 5, 2025
Memory corruption while processing a GP command response.
High
Unreviewed
CVE-2025-27074
was published
Nov 4, 2025
A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw...
Moderate
Unreviewed
CVE-2025-61661
was published
Nov 18, 2025
Out-of-bounds write in Azure Monitor Agent allows an authorized attacker to execute code over a...
High
Unreviewed
CVE-2025-62550
was published
Dec 9, 2025
In the Eclipse OMR port library component since release 0.2.0, an API function to return the...
Moderate
Unreviewed
CVE-2026-1188
was published
Jan 29, 2026
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an authenticated user to...
Moderate
Unreviewed
CVE-2025-33124
was published
Feb 17, 2026
Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by...
Moderate
Unreviewed
CVE-2026-2738
was published
Feb 19, 2026
A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange...
High
Unreviewed
CVE-2026-20049
was published
Mar 4, 2026
Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. For the...
High
Unreviewed
CVE-2024-23805
was published
Feb 14, 2024
A memory corruption vulnerability has been identified in PostScript interpreter in various...
Critical
Unreviewed
CVE-2023-50736
was published
Feb 28, 2024
Windows Kernel Local Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2020-17087
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig...
Critical
Unreviewed
CVE-2024-23606
was published
Feb 20, 2024
ProTip!
Advisories are also available from the
GraphQL API