Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
55
GitHub Actions
50
Go
3,732
Maven
5,000+
npm
5,000+
NuGet
935
pip
4,952
Pub
13
RubyGems
1,055
Rust
1,343
Swift
54
Unreviewed advisories
All unreviewed
5,000+

2,228 advisories

Loading
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, contain a stack... Moderate Unreviewed
CVE-2026-23747 was published Feb 26, 2026
ImageMagick: Stack buffer overflow in FTXT reader via oversized integer field High
CVE-2026-25967 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
ylwango613 Credited to ylwango613
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS... Moderate Unreviewed
CVE-2026-0399 was published Feb 24, 2026
Tenda FH1203 V2.0.1.6 contains a stack-based buffer overflow vulnerability in the... High Unreviewed
CVE-2025-69700 was published Feb 23, 2026
SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated... Moderate Unreviewed
CVE-2019-25434 was published Feb 21, 2026
Foscam Video Management System 1.1.6.6 contains a buffer overflow vulnerability in the UID field... Moderate Unreviewed
CVE-2019-25437 was published Feb 21, 2026
Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user... High Unreviewed
CVE-2019-25435 was published Feb 21, 2026
MailCarrier 2.51 contains a buffer overflow vulnerability in the POP3 USER command that allows... Critical Unreviewed
CVE-2019-25364 was published Feb 19, 2026
WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows... High Unreviewed
CVE-2019-25363 was published Feb 19, 2026
ChaosPro 2.0 contains a buffer overflow vulnerability in the configuration file path handling... High Unreviewed
CVE-2019-25365 was published Feb 19, 2026
Ayukov NFTP client 1.71 contains a buffer overflow vulnerability in the SYST command handling... High Unreviewed
CVE-2019-25361 was published Feb 19, 2026
Aida64 Engineer 6.10.5200 contains a buffer overflow vulnerability in the CSV logging... High Unreviewed
CVE-2019-25360 was published Feb 19, 2026
Control Center PRO 6.2.9 contains a stack-based buffer overflow vulnerability in the user... High Unreviewed
CVE-2019-25357 was published Feb 19, 2026
An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi... Critical Unreviewed
CVE-2026-2329 was published Feb 18, 2026
TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow... High Unreviewed
CVE-2026-26732 was published Feb 17, 2026
TOTOLINK A3002RU_V3 V3.0.0-B20220304.1804 was discovered to contain a stack-based buffer overflow... High Unreviewed
CVE-2026-26736 was published Feb 17, 2026
TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow... High Unreviewed
CVE-2026-26731 was published Feb 17, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32062 was published Feb 15, 2026
The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is... Critical Unreviewed
CVE-2025-32058 was published Feb 15, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32059 was published Feb 15, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32061 was published Feb 15, 2026
rPGP affected by crash in message handling for deeply nested messages High
GHSA-8h58-w33p-wq3g was published for pgp (Rust) Feb 13, 2026
invd Credited to invd
SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password... High Unreviewed
CVE-2019-25336 was published Feb 13, 2026
SpotAuditor 5.3.2 contains a denial of service vulnerability in its Base64 decryption feature... Moderate Unreviewed
CVE-2019-25340 was published Feb 13, 2026
AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local... High Unreviewed
CVE-2019-25331 was published Feb 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database