GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,340
Maven
5,000+
npm
5,000+
NuGet
1,033
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
47 advisories
Filter by severity
LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow...
Moderate
Unreviewed
CVE-2026-8357
was published
Jun 15, 2026
Incorrect calculation of buffer size in Windows TCP/IP allows an authorized attacker to deny...
Moderate
Unreviewed
CVE-2026-42915
was published
Jun 9, 2026
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Set DMA segment...
Moderate
Unreviewed
CVE-2026-43302
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
xfrm: account XFRMA_IF_ID in...
Moderate
Unreviewed
CVE-2026-43107
was published
May 6, 2026
A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can...
Moderate
Unreviewed
CVE-2026-40918
was published
Apr 15, 2026
NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker...
Moderate
Unreviewed
CVE-2025-33216
was published
Mar 24, 2026
TwistedBrush Pro Studio 24.06 contains a denial of service vulnerability in the Script Recorder...
Moderate
Unreviewed
CVE-2019-25555
was published
Mar 21, 2026
Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by...
Moderate
Unreviewed
CVE-2026-2738
was published
Feb 19, 2026
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an authenticated user to...
Moderate
Unreviewed
CVE-2025-33124
was published
Feb 17, 2026
In the Eclipse OMR port library component since release 0.2.0, an API function to return the...
Moderate
Unreviewed
CVE-2026-1188
was published
Jan 29, 2026
A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw...
Moderate
Unreviewed
CVE-2025-61661
was published
Nov 18, 2025
IBM DB2 High Performance Unload 6.1.0.3, 5.1.0.1, 6.1.0.2, 6.5, 6.5.0.0 IF1, 6.1.0.1, 6.1, 5.1, 6...
Moderate
Unreviewed
CVE-2025-33126
was published
Oct 28, 2025
quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading...
Moderate
Unreviewed
CVE-2025-46688
was published
Apr 27, 2025
A negative-size-param in tsMuxer version nightly-2024-04-05-01-53-02 allows attackers to cause...
Moderate
Unreviewed
CVE-2024-49776
was published
Nov 15, 2024
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet...
Moderate
Unreviewed
CVE-2024-28052
was published
Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
binfmt_elf_fdpic: fix AUXV...
Moderate
Unreviewed
CVE-2024-46684
was published
Sep 13, 2024
Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP...
Moderate
Unreviewed
CVE-2024-39808
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: sof-nau8825:...
Moderate
Unreviewed
CVE-2022-48889
was published
Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/gem: Fix Virtual...
Moderate
Unreviewed
CVE-2024-42259
was published
Aug 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
l2tp: pass correct message...
Moderate
Unreviewed
CVE-2024-26752
was published
Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/dsc: Fix the macro...
Moderate
Unreviewed
CVE-2024-26721
was published
Apr 3, 2024
In wipe_ns_memory of nsmemwipe.c, there is a possible incorrect size calculation due to a logic...
Moderate
Unreviewed
CVE-2024-27237
was published
Mar 11, 2024
An integer overflow was found in the __vsyslog_internal function of the glibc library. This...
Moderate
Unreviewed
CVE-2023-6780
was published
Jan 31, 2024
In pqframework, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2023-20627
was published
Mar 7, 2023
In mtk-isp, there is a possible use after free due to a logic error. This could lead to local...
Moderate
Unreviewed
CVE-2022-32650
was published
Jan 3, 2023
ProTip!
Advisories are also available from the
GraphQL API