GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,338
Maven
5,000+
npm
5,000+
NuGet
1,032
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
22 advisories
Filter by severity
ImageMagick before 7.1.2-26 and 6.9.13-51 contains a heap-based buffer over-write vulnerability...
Low
Unreviewed
CVE-2026-61464
was published
Jul 15, 2026
A flaw was found in libarchive. This vulnerability allows a remote attacker to trigger a heap...
Low
Unreviewed
CVE-2026-15028
was published
Jul 10, 2026
In RtcpChunk::decodeRtcpChunk, there is a possible out of bounds read due to a heap buffer...
Low
Unreviewed
CVE-2026-0130
was published
Jun 16, 2026
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to disclose...
Low
Unreviewed
CVE-2026-45466
was published
Jun 9, 2026
A heap buffer overflow flaw was found in 389 Directory Server. When audit logging is enabled, the...
Low
Unreviewed
CVE-2026-11792
was published
Jun 9, 2026
X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A buffer overflow...
Low
Unreviewed
CVE-2026-5448
was published
Apr 10, 2026
Two potential heap out-of-bounds write locations existed in DecodeObjectId() in wolfcrypt/src/asn...
Low
Unreviewed
CVE-2026-5187
was published
Apr 9, 2026
An integer overflow vulnerability existed in the static function wolfssl_add_to_chain, that...
Low
Unreviewed
CVE-2026-3229
was published
Mar 19, 2026
Heap-based buffer overflow in the KCAPI ECC code path of wc_ecc_import_x963_ex() in wolfSSL...
Low
Unreviewed
CVE-2026-4395
was published
Mar 19, 2026
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker...
Low
Unreviewed
CVE-2025-57709
was published
Feb 11, 2026
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release...
Low
Unreviewed
CVE-2025-46643
was published
Jan 9, 2026
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a...
Low
Unreviewed
CVE-2025-11961
was published
Dec 31, 2025
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted...
Low
Unreviewed
CVE-2024-8443
was published
Sep 10, 2024
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where an attacker may...
Low
Unreviewed
CVE-2025-23308
was published
Sep 24, 2025
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability...
Low
Unreviewed
CVE-2021-36054
was published
May 24, 2022
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap...
Low
Unreviewed
CVE-2025-5915
was published
Jun 9, 2025
Artifex Ghostscript before 10.0.3.0 has a heap-based pointer disclosure (observable in a...
Low
Unreviewed
CVE-2024-29508
was published
Jul 3, 2024
OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can...
Low
Unreviewed
CVE-2022-38701
was published
Sep 10, 2022
RoboDK v5.5.4
is vulnerable to heap-based buffer overflow while processing a specific project...
Low
Unreviewed
CVE-2024-0257
was published
Apr 17, 2024
A vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). A heap-based...
Low
Unreviewed
CVE-2023-27410
was published
May 9, 2023
Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a...
Low
Unreviewed
CVE-2023-4016
was published
Aug 2, 2023
A vulnerability was found in Delta Electronics WPLSoft up to 2.51 and classified as problematic....
Low
Unreviewed
CVE-2023-5460
was published
Oct 9, 2023
ProTip!
Advisories are also available from the
GraphQL API