Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,196
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,483
Pub
12
RubyGems
992
Rust
1,186
Swift
51
Unreviewed advisories
All unreviewed
5,000+

7,363 advisories

Loading
Undefined behavior in the DOM: Core & HTML component. This vulnerability affects Firefox < 148,... Critical Unreviewed
CVE-2026-2771 was published Feb 24, 2026
Easy Grade Pro 4.1.0.2 contains a file parsing logic flaw in the handling of proprietary .EGP... Low Unreviewed
CVE-2025-70330 was published Mar 11, 2026
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2026-27270 was published Mar 11, 2026
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2026-27268 was published Mar 11, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an Out-of-bounds Read... Moderate Unreviewed
CVE-2026-27219 was published Mar 10, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2026-21365 was published Mar 10, 2026
Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when... High Unreviewed
CVE-2026-27269 was published Mar 10, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2026-27216 was published Mar 10, 2026
ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoder Moderate
CVE-2026-28692 was published for Magick.NET-Q16-AnyCPU (NuGet) Mar 10, 2026
ylwango613 Credited to ylwango613
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code... High Unreviewed
CVE-2026-26109 was published Mar 10, 2026
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-25175 was published Mar 10, 2026
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate... High Unreviewed
CVE-2026-25174 was published Mar 10, 2026
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose... Moderate Unreviewed
CVE-2026-25180 was published Mar 10, 2026
Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a... High Unreviewed
CVE-2026-25181 was published Mar 10, 2026
Out-of-bounds read in Push Message Routing Service allows an authorized attacker to disclose... Moderate Unreviewed
CVE-2026-24282 was published Mar 10, 2026
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2026-23672 was published Mar 10, 2026
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to... High Unreviewed
CVE-2026-23673 was published Mar 10, 2026
Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability. High Unreviewed
CVE-2026-3631 was published Mar 9, 2026
The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this... High Unreviewed
CVE-2022-37007 was published Aug 11, 2022
In createRequest of MediaProvider.java, there is a possible way for an app to gain read/write... High Unreviewed
CVE-2026-0035 was published Mar 2, 2026
Inappropriate implementation in WebAudio in Google Chrome prior to 145.0.7632.159 allowed a... High Unreviewed
CVE-2026-3540 was published Mar 4, 2026
Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2026-28540 was published Mar 5, 2026
A vulnerability was identified in FascinatedBox lily up to 2.3. This issue affects the function... Moderate Unreviewed
CVE-2026-3390 was published Mar 1, 2026
A flaw has been found in wren-lang wren up to 0.4.0. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2026-3386 was published Mar 1, 2026
A security flaw has been discovered in FascinatedBox lily up to 2.3. Impacted is the function... Moderate Unreviewed
CVE-2026-3391 was published Mar 1, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database