GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,787
Composer 5,986
Erlang 73
GitHub Actions 53
Go 4,029
Maven 6,658
npm 6,516
NuGet 976
pip 5,380
Pub 13
RubyGems 1,070
Rust 1,404
Swift 61

Unreviewed advisories

All unreviewed 309,116

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

402 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information... Low Unreviewed

CVE-2026-45485 was published Jun 9, 2026

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose... Low Unreviewed

CVE-2026-45455 was published Jun 9, 2026

A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer... Low Unreviewed

CVE-2026-11786 was published Jun 9, 2026

An out of bounds read in the remote management firmware could allow a privileged attacker read a... Low Unreviewed

CVE-2024-21950 was published May 15, 2026

Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote... Low Unreviewed

CVE-2026-8578 was published May 14, 2026

A vulnerability has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this issue is the... Low Unreviewed

CVE-2026-8213 was published May 10, 2026

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who... Low Unreviewed

CVE-2026-7949 was published May 6, 2026

In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large... Low Unreviewed

CVE-2026-40686 was published May 1, 2026

CVE-2026-33450 is an out of bounds read vulnerability in the Secure Access MacOS client prior to... Low Unreviewed

CVE-2026-33450 was published Apr 30, 2026

A rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request,... Low Unreviewed

CVE-2026-33599 was published Apr 22, 2026

Potential read out of bounds case with wolfSSHd on Windows while handling a terminal resize... Low Unreviewed

CVE-2026-0930 was published Apr 21, 2026

Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an OOB read on the... Low Unreviewed

CVE-2026-5392 was published Apr 10, 2026

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the... Low Unreviewed

CVE-2026-28526 was published Mar 30, 2026

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the... Low Unreviewed

CVE-2026-28527 was published Mar 30, 2026

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the... Low Unreviewed

CVE-2026-28528 was published Mar 30, 2026

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A... Low Unreviewed

CVE-2026-4159 was published Mar 20, 2026

Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of... Low Unreviewed

CVE-2025-71264 was published Mar 16, 2026

Easy Grade Pro 4.1.0.2 contains a file parsing logic flaw in the handling of proprietary .EGP... Low Unreviewed

CVE-2025-70330 was published Mar 11, 2026

Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an... Low Unreviewed

CVE-2026-22717 was published Feb 27, 2026

A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the... Low Unreviewed

CVE-2026-3285 was published Feb 27, 2026

A vulnerability exists in EnOcean SmartServer IoT version 4.60.009 and prior, which would allow... Low Unreviewed

CVE-2026-22885 was published Feb 20, 2026

An integer underflow vulnerability in Silicon Labs Secure NCP host implementation allows a buffer... Low Unreviewed

CVE-2025-14055 was published Feb 20, 2026

An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an... Low Unreviewed

CVE-2024-56807 was published Feb 11, 2026

A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs... Low Unreviewed

CVE-2026-1485 was published Jan 27, 2026

Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event... Low Unreviewed

CVE-2025-53470 was published Jan 10, 2026

Previous1…17 Next

Previous 1 2 3 4 5 … 16 17 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

402 advisories