Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+

141 advisories

Loading
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This... Critical Unreviewed
CVE-2026-9256 was published May 26, 2026
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and... Critical Unreviewed
CVE-2026-42055 was published Jun 17, 2026
Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows... Critical Unreviewed
CVE-2026-2467 was published Jun 17, 2026
pywasm3 contains a heap buffer overflow which leads to segmentation fault Critical
CVE-2024-34249 was published for pywasm3 (pip) May 6, 2024
Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute... Critical Unreviewed
CVE-2026-47291 was published Jun 9, 2026
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network. Critical Unreviewed
CVE-2026-45657 was published Jun 9, 2026
Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate... Critical Unreviewed
CVE-2026-42904 was published Jun 9, 2026
CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow. Critical Unreviewed
CVE-2021-33485 was published May 24, 2022
FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP AS_PATH... Critical Unreviewed
CVE-2026-48691 was published May 26, 2026
IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed... Critical Unreviewed
CVE-2026-8175 was published May 27, 2026
FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in... Critical Unreviewed
CVE-2026-48689 was published May 26, 2026
A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Critical Unreviewed
CVE-2026-8631 was published May 20, 2026
A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4... Critical Unreviewed
CVE-2026-44050 was published May 21, 2026
NGINX JavaScript has a vulnerability when the js_fetch_proxy directive is configured with at... Critical Unreviewed
CVE-2026-8711 was published May 19, 2026
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This... Critical Unreviewed
CVE-2026-42945 was published May 13, 2026
Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute... Critical Unreviewed
CVE-2026-41096 was published May 12, 2026
ExecuTorch vulnerable to Heap-based Buffer Overflow Critical
CVE-2025-54951 was published for executorch (Maven) Aug 8, 2025
Fidget-Grep Credited to Fidget-Grep
ExecuTorch heap buffer overflow vulnerability Critical
CVE-2025-54949 was published for executorch (Maven) Aug 8, 2025
Fidget-Grep Credited to Fidget-Grep
Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp... Critical Unreviewed
CVE-2026-28780 was published May 6, 2026
Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The... Critical Unreviewed
CVE-2025-70067 was published May 4, 2026
A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to... Critical Unreviewed
CVE-2026-42483 was published May 1, 2026
When processing the header of an incoming message, libnv failed to properly validate the message... Critical Unreviewed
CVE-2026-35547 was published Apr 30, 2026
Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library... Critical Unreviewed
CVE-2026-5450 was published Apr 20, 2026
SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow... Critical Unreviewed
CVE-2026-32956 was published Apr 20, 2026
Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this... Critical Unreviewed
CVE-2026-34865 was published Apr 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database