Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
43
Go
3,181
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,474
Pub
12
RubyGems
991
Rust
1,185
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

111,274 advisories

Loading
Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2026-3556 was published Mar 16, 2026
A vulnerability was detected in TRENDnet TEW-632BRP 1.010B32. This affects an unknown part of the... High Unreviewed
CVE-2026-4172 was published Mar 16, 2026
A weakness has been identified in Topsec TopACM 3.0. Affected by this vulnerability is an unknown... High Unreviewed
CVE-2026-4170 was published Mar 16, 2026
Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2026-3557 was published Mar 16, 2026
A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL... High Unreviewed
CVE-2026-3227 was published Mar 16, 2026
A vulnerability was detected in Wavlink WL-WN579A3 220323. This issue affects the function... High Unreviewed
CVE-2026-4163 was published Mar 16, 2026
Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability.... High Unreviewed
CVE-2026-3559 was published Mar 16, 2026
Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2026-3560 was published Mar 16, 2026
GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-3084 was published Mar 16, 2026
Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2026-3838 was published Mar 16, 2026
Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This... High Unreviewed
CVE-2026-3839 was published Mar 16, 2026
Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2026-3561 was published Mar 16, 2026
Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass... High Unreviewed
CVE-2026-3558 was published Mar 16, 2026
GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2026-3081 was published Mar 16, 2026
Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2026-3555 was published Mar 16, 2026
Insecure Direct Object Reference (IDOR) vulnerability in Campus Educativa specifically at the... High Unreviewed
CVE-2026-3110 was published Mar 16, 2026
A Code Injection vulnerability affecting in SOLIDWORKS Desktop from Release 2025 through Release... High Unreviewed
CVE-2026-3476 was published Mar 16, 2026
GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-2920 was published Mar 16, 2026
IceWarp collaboration Directory Traversal Information Disclosure Vulnerability. This... High Unreviewed
CVE-2026-2493 was published Mar 16, 2026
GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2026-2921 was published Mar 16, 2026
GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-2922 was published Mar 16, 2026
GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-2923 was published Mar 16, 2026
Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which... High Unreviewed
CVE-2026-2476 was published Mar 16, 2026
OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command... High Unreviewed
CVE-2026-31386 was published Mar 16, 2026
Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically... High Unreviewed
CVE-2026-3021 was published Mar 16, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database