GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,323
Maven
5,000+
npm
5,000+
NuGet
1,031
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,494
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
71 advisories
Filter by severity
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2050
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: Fix buffer...
High
Unreviewed
CVE-2026-53143
was published
Jun 25, 2026
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2049
was published
Jun 11, 2026
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-4152
was published
Apr 11, 2026
In the Linux kernel, the following vulnerability has been resolved:
net: pull headers in...
High
Unreviewed
CVE-2026-53091
was published
Jun 24, 2026
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability...
High
Unreviewed
CVE-2026-4695
was published
Mar 24, 2026
Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in...
High
Unreviewed
CVE-2026-10701
was published
Jun 2, 2026
GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2047
was published
Feb 21, 2026
BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client ...
High
Unreviewed
CVE-2026-29004
was published
May 4, 2026
Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox...
High
Unreviewed
CVE-2026-6752
was published
Apr 21, 2026
When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without...
High
Unreviewed
CVE-2026-40618
was published
May 13, 2026
When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate...
High
Unreviewed
CVE-2025-0395
was published
Jan 22, 2025
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer...
High
Unreviewed
CVE-2022-43945
was published
Nov 5, 2022
NEMU (OpenXiangShan/NEMU) before v2025.12.r2 contains an improper instruction-validation flaw in...
High
Unreviewed
CVE-2026-29645
was published
Apr 20, 2026
In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP ...
High
Unreviewed
CVE-2023-52557
was published
Mar 1, 2024
In OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019, a network buffer that had to...
High
Unreviewed
CVE-2023-52558
was published
Mar 1, 2024
Windows Kernel Local Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2020-17087
was published
May 24, 2022
Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. For the...
High
Unreviewed
CVE-2024-23805
was published
Feb 14, 2024
A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange...
High
Unreviewed
CVE-2026-20049
was published
Mar 4, 2026
Out-of-bounds write in Azure Monitor Agent allows an authorized attacker to execute code over a...
High
Unreviewed
CVE-2025-62550
was published
Dec 9, 2025
Memory corruption while processing a GP command response.
High
Unreviewed
CVE-2025-27074
was published
Nov 4, 2025
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
Microsoft Defender Remote Code Execution Vulnerability
High
Unreviewed
CVE-2021-1647
was published
May 24, 2022
Memory corruption during PlayReady APP usecase while processing TA commands.
High
Unreviewed
CVE-2025-27053
was published
Oct 9, 2025
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Fix...
High
Unreviewed
CVE-2024-46729
was published
Sep 18, 2024
ProTip!
Advisories are also available from the
GraphQL API