Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,175
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+

7,851 advisories

Loading
JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when... High Unreviewed
CVE-2026-56017 was published Jun 29, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS... Moderate Unreviewed
CVE-2026-43712 was published Jun 29, 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5.2 and... Moderate Unreviewed
CVE-2026-43703 was published Jun 29, 2026
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2026-43676 was published Jun 29, 2026
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2026-28979 was published Jun 29, 2026
Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds... Moderate Unreviewed
CVE-2026-9267 was published Jun 29, 2026
Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine... High Unreviewed
CVE-2026-5757 was published Jun 26, 2026
Out-of-bounds heap read during SM2/SM3 certificate signature verification. When parsing a... Moderate Unreviewed
CVE-2026-12340 was published Jun 25, 2026
RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when... Moderate Unreviewed
CVE-2026-56788 was published Jun 25, 2026
Horner Automation Cscape versions prior to 10.2 SP3 are vulnerable to an Out-of-Bounds Read... High Unreviewed
CVE-2026-12897 was published Jun 25, 2026
MessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflows High
CVE-2026-48502 was published for MessagePack (NuGet) Jun 25, 2026
AArnott Credited to AArnott
Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData.... Moderate Unreviewed
CVE-2026-6094 was published Jun 25, 2026
In EmberZNet v9.0.2 and earlier, malformed global ZCL messages can trigger out-of-bounds reads in... High Unreviewed
CVE-2026-4526 was published Jun 25, 2026
In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads... High Unreviewed
CVE-2026-47148 was published Jun 25, 2026
In EmberZNet v9.0.2 and earlier, a malformed GetProfileResponse message can trigger out-of-bounds... High Unreviewed
CVE-2026-47154 was published Jun 25, 2026
In EmberZNet v9.0.2 and earlier, malformed or out-of-range Door Lock user identifiers can trigger... High Unreviewed
CVE-2026-47149 was published Jun 25, 2026
In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out... High Unreviewed
CVE-2026-47147 was published Jun 25, 2026
Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149.0.7827.197... High Unreviewed
CVE-2026-13033 was published Jun 24, 2026
An out-of-bounds heap read and integer underflow in the TCP urgent data handling (sosendoob) in... Moderate Unreviewed
CVE-2026-9539 was published Jun 24, 2026
A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H... Moderate Unreviewed
CVE-2026-12892 was published Jun 23, 2026
A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC... Moderate Unreviewed
CVE-2026-12891 was published Jun 23, 2026
Acrobat Reader versions 2020.009.20074, 2020.001.30002, 2017.011.30171, 2015.006.30523 and... Moderate Unreviewed
CVE-2020-9711 was published Jun 23, 2026
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and... Moderate Unreviewed
CVE-2020-9713 was published Jun 23, 2026
An out-of-bounds read vulnerability exists in dnsmasq's find_soa() function in src/rfc1035.c.... Moderate Unreviewed
CVE-2026-12969 was published Jun 23, 2026
A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the... Low Unreviewed
CVE-2026-55654 was published Jun 23, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database