GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,340
Maven
5,000+
npm
5,000+
NuGet
1,033
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
140 advisories
Filter by severity
An IPv6 packet processing vulnerability in the dataplane of Palo Alto Networks PAN-OS® software...
Low
Unreviewed
CVE-2026-0280
was published
Jul 9, 2026
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: Fix buffer...
High
Unreviewed
CVE-2026-53143
was published
Jun 25, 2026
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2050
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
net: pull headers in...
High
Unreviewed
CVE-2026-53091
was published
Jun 24, 2026
In the Linux kernel, the following vulnerability has been resolved:
libceph: Fix potential out...
Critical
Unreviewed
CVE-2026-52955
was published
Jun 24, 2026
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and...
Critical
Unreviewed
CVE-2026-42055
was published
Jun 17, 2026
LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow...
Moderate
Unreviewed
CVE-2026-8357
was published
Jun 15, 2026
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2049
was published
Jun 11, 2026
Incorrect calculation of buffer size in Windows TCP/IP allows an authorized attacker to deny...
Moderate
Unreviewed
CVE-2026-42915
was published
Jun 9, 2026
Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in...
High
Unreviewed
CVE-2026-10701
was published
Jun 2, 2026
In the Linux kernel, the following vulnerability has been resolved:
ipv6: rpl: reserve mac_len...
Critical
Unreviewed
CVE-2026-43501
was published
May 21, 2026
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This...
Critical
Unreviewed
CVE-2026-42945
was published
May 13, 2026
When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without...
High
Unreviewed
CVE-2026-40618
was published
May 13, 2026
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Set DMA segment...
Moderate
Unreviewed
CVE-2026-43302
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
xfrm: account XFRMA_IF_ID in...
Moderate
Unreviewed
CVE-2026-43107
was published
May 6, 2026
BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client ...
High
Unreviewed
CVE-2026-29004
was published
May 4, 2026
Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT...
Critical
Unreviewed
CVE-2026-1949
was published
Apr 24, 2026
Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox...
High
Unreviewed
CVE-2026-6752
was published
Apr 21, 2026
NEMU (OpenXiangShan/NEMU) before v2025.12.r2 contains an improper instruction-validation flaw in...
High
Unreviewed
CVE-2026-29645
was published
Apr 20, 2026
A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can...
Moderate
Unreviewed
CVE-2026-40918
was published
Apr 15, 2026
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-4152
was published
Apr 11, 2026
A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of...
Critical
Unreviewed
CVE-2026-20911
was published
Apr 7, 2026
NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker...
Moderate
Unreviewed
CVE-2025-33216
was published
Mar 24, 2026
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability...
High
Unreviewed
CVE-2026-4695
was published
Mar 24, 2026
TwistedBrush Pro Studio 24.06 contains a denial of service vulnerability in the Script Recorder...
Moderate
Unreviewed
CVE-2019-25555
was published
Mar 21, 2026
ProTip!
Advisories are also available from the
GraphQL API