GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,556
Composer 5,975
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,648
npm 6,420
NuGet 974
pip 5,303
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 307,830

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,626 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in QEMU's virtio-blk device. The issue arises because the device does not... Moderate Unreviewed

CVE-2026-48914 was published Jun 12, 2026

Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote... High Unreviewed

CVE-2026-12030 was published Jun 12, 2026

Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote... High Unreviewed

CVE-2026-12010 was published Jun 12, 2026

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2026-2049 was published Jun 11, 2026

An incorrect buffer size calculation in the epoch key generator in OpenVPN ovpn-dco-win version 2... Moderate Unreviewed

CVE-2026-11604 was published Jun 11, 2026

A heap buffer overflow flaw was found in 389 Directory Server. When serializing objectclass... Moderate Unreviewed

CVE-2026-11884 was published Jun 10, 2026

Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-48291 was published Jun 9, 2026

Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-48292 was published Jun 9, 2026

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Heap-based... High Unreviewed

CVE-2026-47952 was published Jun 9, 2026

SQLite before 3.53.2 contains memory corruption vulnerabilities in the FTS5 full-text search... High Unreviewed

CVE-2026-11822 was published Jun 9, 2026

SQLite before 3.53.2 contains a heap-based buffer overflow vulnerability in the FTS5 full-text... High Unreviewed

CVE-2026-11824 was published Jun 9, 2026

An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). There is a... High Unreviewed

CVE-2023-43688 was published Jun 9, 2026

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-34699 was published Jun 9, 2026

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-34701 was published Jun 9, 2026

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-34698 was published Jun 9, 2026

InCopy versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2026-34707 was published Jun 9, 2026

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally. High Unreviewed

CVE-2026-48574 was published Jun 9, 2026

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an... High Unreviewed

CVE-2026-47635 was published Jun 9, 2026

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. High Unreviewed

CVE-2026-47652 was published Jun 9, 2026

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute... Critical Unreviewed

CVE-2026-47291 was published Jun 9, 2026

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute... High Unreviewed

CVE-2026-47289 was published Jun 9, 2026

Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network. Critical Unreviewed

CVE-2026-45657 was published Jun 9, 2026

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. High Unreviewed

CVE-2026-45653 was published Jun 9, 2026

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to... High Unreviewed

CVE-2026-45638 was published Jun 9, 2026

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker... High Unreviewed

CVE-2026-45469 was published Jun 9, 2026

Previous1…66 Next

Previous 1 2 3 4 5 … 65 66 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

1,626 advisories