Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,266 advisories

Loading
Heap buffer overflow in WebRTC in Google Chrome on Windows prior to 149.0.7827.155 allowed a... High Unreviewed
CVE-2026-12466 was published Jun 17, 2026
Heap buffer overflow in WebRTC in Google Chrome prior to 149.0.7827.155 allowed a remote attacker... High Unreviewed
CVE-2026-12447 was published Jun 17, 2026
In RtpSession::rtpSendRtcpPacket, there is a possible OOB write due to a heap buffer overflow.... High Unreviewed
CVE-2026-0149 was published Jun 16, 2026
In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead... High Unreviewed
CVE-2026-0132 was published Jun 16, 2026
DNG SDK versions 1.7.1 2536 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-47964 was published Jun 16, 2026
A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client). The... High Unreviewed
CVE-2026-52720 was published Jun 15, 2026
Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote... High Unreviewed
CVE-2026-12030 was published Jun 12, 2026
Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote... High Unreviewed
CVE-2026-12010 was published Jun 12, 2026
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-2049 was published Jun 11, 2026
Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-48291 was published Jun 9, 2026
Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-48292 was published Jun 9, 2026
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Heap-based... High Unreviewed
CVE-2026-47952 was published Jun 9, 2026
SQLite before 3.53.2 contains a heap-based buffer overflow vulnerability in the FTS5 full-text... High Unreviewed
CVE-2026-11824 was published Jun 9, 2026
SQLite before 3.53.2 contains memory corruption vulnerabilities in the FTS5 full-text search... High Unreviewed
CVE-2026-11822 was published Jun 9, 2026
An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). There is a... High Unreviewed
CVE-2023-43688 was published Jun 9, 2026
InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34699 was published Jun 9, 2026
InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34701 was published Jun 9, 2026
InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34698 was published Jun 9, 2026
InCopy versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34707 was published Jun 9, 2026
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-48574 was published Jun 9, 2026
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an... High Unreviewed
CVE-2026-47635 was published Jun 9, 2026
Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-47652 was published Jun 9, 2026
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute... High Unreviewed
CVE-2026-47289 was published Jun 9, 2026
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-45653 was published Jun 9, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to... High Unreviewed
CVE-2026-45638 was published Jun 9, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database