GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,335
Maven
5,000+
npm
5,000+
NuGet
1,031
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,497
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
246 advisories
Filter by severity
A time-of-check to time-of-use (TOCTOU) flaw in the illumos data-link pseudo-driver (dld) affects...
Moderate
Unreviewed
CVE-2026-15449
was published
Jul 16, 2026
Heap-based buffer overflow in Universal Plug and Play (upnp.dll) allows an authorized attacker to...
Moderate
Unreviewed
CVE-2026-58547
was published
Jul 14, 2026
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to elevate privileges...
Moderate
Unreviewed
CVE-2026-50668
was published
Jul 14, 2026
Heap-based buffer overflow in Windows Resilient File System (ReFS) allows an unauthorized...
Moderate
Unreviewed
CVE-2026-50492
was published
Jul 14, 2026
Heap-based buffer overflow in Windows DirectX allows an authorized attacker to elevate privileges...
Moderate
Unreviewed
CVE-2026-50375
was published
Jul 14, 2026
Heap-based buffer overflow in Windows Kernel allows an unauthorized attacker to elevate...
Moderate
Unreviewed
CVE-2026-54132
was published
Jul 14, 2026
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to disclose...
Moderate
Unreviewed
CVE-2026-50678
was published
Jul 14, 2026
Heap-based buffer overflow in Windows USB Video Driver allows an unauthorized attacker to elevate...
Moderate
Unreviewed
CVE-2026-49804
was published
Jul 14, 2026
Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker...
Moderate
Unreviewed
CVE-2026-50299
was published
Jul 14, 2026
ImageMagick before 7.1.2-19 contains a heap buffer overflow vulnerability in the magnify...
Moderate
Unreviewed
CVE-2026-56372
was published
Jul 11, 2026
Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers....
Moderate
Unreviewed
CVE-2026-58306
was published
Jul 9, 2026
Catapult DCT2000 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows...
Moderate
Unreviewed
CVE-2026-15174
was published
Jul 8, 2026
Crash in ciscodump 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service
Moderate
Unreviewed
CVE-2026-15164
was published
Jul 8, 2026
TLS ECH decryptor crash in Wireshark 4.6.0 to 4.6.6 allows denial of service
Moderate
Unreviewed
CVE-2026-15165
was published
Jul 8, 2026
UMTS FP protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of...
Moderate
Unreviewed
CVE-2026-15169
was published
Jul 8, 2026
Z39.50 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of...
Moderate
Unreviewed
CVE-2026-15170
was published
Jul 8, 2026
pcapng file parser crash in Wireshark 4.6.0 to 4.6.6 allows denial of service
Moderate
Unreviewed
CVE-2026-15173
was published
Jul 8, 2026
GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability...
Moderate
Unreviewed
CVE-2026-58471
was published
Jul 7, 2026
A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When
normalizing a...
Moderate
Unreviewed
CVE-2026-14940
was published
Jul 7, 2026
In Telephony, there is a possible memory corruption due to a heap buffer overflow. This could...
Moderate
Unreviewed
CVE-2026-20462
was published
Jul 1, 2026
Insufficient data validation in Storage in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-13976
was published
Jul 1, 2026
A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870...
Moderate
Unreviewed
CVE-2026-51219
was published
Jun 30, 2026
A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of...
Moderate
Unreviewed
CVE-2026-51218
was published
Jun 30, 2026
A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to...
Moderate
Unreviewed
CVE-2026-30040
was published
Jun 26, 2026
GPAC Multimedia Open Source Project GPAC Project/MP4Box 2.5-DEV-rev1593-gfe88c3545-master is...
Moderate
Unreviewed
CVE-2025-60468
was published
Jun 25, 2026
ProTip!
Advisories are also available from the
GraphQL API