Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,559 advisories

Loading
An integer overflow in the mtar_next() function in src/microtar.c in rxi microtar 0.1.0 allows a... High Unreviewed
CVE-2026-54417 was published Jun 17, 2026
In numberOfReportBlocks of RtpSession.cpp, there is a possible out of bounds write due to an... High Unreviewed
CVE-2026-0161 was published Jun 16, 2026
In IntfGraphCreate of intfgraph.c, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2026-0151 was published Jun 16, 2026
In ExecuteGraph command handler of EdgeTPU firmware, there is a possible out of bounds write due... High Unreviewed
CVE-2026-0150 was published Jun 16, 2026
In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write... High Unreviewed
CVE-2026-0148 was published Jun 16, 2026
A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow... High Unreviewed
CVE-2026-10649 was published Jun 16, 2026
A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc... High Unreviewed
CVE-2026-52722 was published Jun 15, 2026
A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. When processing a... High Unreviewed
CVE-2026-53705 was published Jun 15, 2026
Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine... High Unreviewed
CVE-2025-14098 was published Jun 13, 2026
An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base).... High Unreviewed
CVE-2026-11774 was published Jun 11, 2026
CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an... High Unreviewed
CVE-2026-34711 was published Jun 10, 2026
The utility functions used by Malwarebytes EDR 1.0.11 on Linux for calculating a cryptographic... High Unreviewed
CVE-2023-29146 was published Jun 9, 2026
Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code... High Unreviewed
CVE-2026-47288 was published Jun 9, 2026
Integer overflow or wraparound in Windows Internet (wininet.dll) allows an authorized attacker to... High Unreviewed
CVE-2026-45592 was published Jun 9, 2026
Use after free in Windows SDK allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-45593 was published Jun 9, 2026
Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to... High Unreviewed
CVE-2026-44812 was published Jun 9, 2026
Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to... High Unreviewed
CVE-2026-44803 was published Jun 9, 2026
Integer underflow (wrap or wraparound) in Windows NT OS Kernel allows an authorized attacker to... High Unreviewed
CVE-2026-42916 was published Jun 9, 2026
Integer underflow (wrap or wraparound) in Windows Performance Monitor allows an unauthorized... High Unreviewed
CVE-2026-42974 was published Jun 9, 2026
An integer overflow vulnerability exists in the evaluation logic of the Spring Expression... High Unreviewed
CVE-2026-41849 was published Jun 9, 2026
Integer overflow in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote... High Unreviewed
CVE-2026-11085 was published Jun 5, 2026
Integer overflow in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who... High Unreviewed
CVE-2026-10921 was published Jun 5, 2026
Integer overflow in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker... High Unreviewed
CVE-2026-10924 was published Jun 5, 2026
An integer underflow in the BGPUpdate.DecodeFromBytes function (/bgp/bgp.go) of gobgp v4.3.0... High Unreviewed
CVE-2026-37462 was published Jun 3, 2026
In l2c_fcr_clone_buf of l2c_fcr.cc, there is a possible way to trigger controlled heap corruption... High Unreviewed
CVE-2026-0095 was published Jun 2, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database