Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

46 advisories

Loading
NewNTUnicodeString does not check for string length overflow. When provided with a string that... Low Unreviewed
CVE-2026-39824 was published May 26, 2026
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. Low Unreviewed
CVE-2026-27781 was published May 19, 2026
A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow ... Low Unreviewed
CVE-2021-26380 was published May 15, 2026
A client might theoretically be able to cause a mismatch between queries sent to a backend and... Low Unreviewed
CVE-2026-33596 was published Apr 22, 2026
A flaw was found in GIMP's PSP (Paint Shop Pro) file parser. A remote attacker could exploit an... Low Unreviewed
CVE-2026-2271 was published Mar 26, 2026
A flaw was found in glib. Missing validation of offset and count parameters in the... Low Unreviewed
CVE-2026-0988 was published Jan 21, 2026
Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows... Low Unreviewed
CVE-2023-29144 was published Dec 12, 2025
An integer overflow in the SMU could allow a privileged attacker to potentially write memory... Low Unreviewed
CVE-2023-31365 was published Sep 6, 2025
Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a... Low Unreviewed
CVE-2021-46750 was published Sep 6, 2025
Integer overflow or wraparound in the Linux kernel-mode driver for some Intel(R) 800 Series... Low Unreviewed
CVE-2025-24324 was published Aug 12, 2025
An integer overflow in the image processing binary of the MIB3 infotainment unit allows an... Low Unreviewed
CVE-2023-28903 was published Jun 28, 2025
A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is... Low Unreviewed
CVE-2025-6052 was published Jun 13, 2025
A vulnerability has been identified in the libarchive library, specifically within the... Low Unreviewed
CVE-2025-5914 was published Jun 9, 2025
A vulnerability has been identified in the libarchive library. This flaw involves an integer... Low Unreviewed
CVE-2025-5916 was published Jun 9, 2025
A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME... Low Unreviewed
CVE-2025-4945 was published May 19, 2025
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long... Low Unreviewed
CVE-2025-3360 was published Apr 7, 2025
Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in... Low Unreviewed
CVE-2025-2574 was published Mar 20, 2025
EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by... Low Unreviewed
CVE-2024-12546 was published Mar 11, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-20024 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-0587 was published Mar 4, 2025
An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user... Low Unreviewed
CVE-2023-34406 was published Feb 14, 2025
An integer overflow in the ASP could allow a privileged attacker to perform an out-of-bounds... Low Unreviewed
CVE-2023-20507 was published Feb 11, 2025
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2... Low Unreviewed
CVE-2024-46669 was published Jan 14, 2025
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-21783 was published Nov 13, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an... Low Unreviewed
CVE-2024-10917 was published Nov 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database