Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
42
GitHub Actions
43
Go
3,153
Maven
5,000+
npm
5,000+
NuGet
861
pip
4,451
Pub
12
RubyGems
991
Rust
1,179
Swift
50
Unreviewed advisories
All unreviewed
5,000+

415 advisories

Loading
Easy Grade Pro 4.1.0.2 contains a file parsing logic flaw in the handling of proprietary .EGP... Low Unreviewed
CVE-2025-70330 was published Mar 11, 2026
A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the... Low Unreviewed
CVE-2026-3285 was published Feb 27, 2026
Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an... Low Unreviewed
CVE-2026-22717 was published Feb 27, 2026
ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization Low
GHSA-gq5v-qf8q-fp77 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 25, 2026
ylwango613 Credited to ylwango613
ImageMagick: Malicious PCD files trigger 1‑byte heap Out-of-bounds Read and DoS Low
GHSA-wgxp-q8xq-wpp9 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 25, 2026
ylwango613 Credited to ylwango613
ImageMagick: Integer Overflow in PSB (PSD v2) RLE decoding path causes heap Out of Bounds reads for 32-bit builds Low
CVE-2026-25984 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 25, 2026
andsopwn Credited to andsopwn
A vulnerability exists in EnOcean SmartServer IoT version 4.60.009 and prior, which would allow... Low Unreviewed
CVE-2026-22885 was published Feb 20, 2026
An integer underflow vulnerability in Silicon Labs Secure NCP host implementation allows a buffer... Low Unreviewed
CVE-2025-14055 was published Feb 20, 2026
An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an... Low Unreviewed
CVE-2024-56807 was published Feb 11, 2026
mnl has segmentation fault and invalid memory read in `mnl::cb_run` Low
GHSA-585q-cm62-757j was published for mnl (Rust) Jan 9, 2026
A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs... Low Unreviewed
CVE-2026-1485 was published Jan 27, 2026
AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability Low
CVE-2025-15506 was published for opencolorio (pip) Jan 11, 2026
Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event... Low Unreviewed
CVE-2025-53470 was published Jan 10, 2026
An out-of-bounds read vulnerability has been reported to affect License Center. If a remote... Low Unreviewed
CVE-2025-52871 was published Jan 2, 2026
pdfforge PDF Architect PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability.... Low Unreviewed
CVE-2025-14421 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14408 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14410 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14411 was published Dec 24, 2025
An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2.... Low Unreviewed
CVE-2025-55307 was published Dec 11, 2025
Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability... Low Unreviewed
CVE-2023-42114 was published May 3, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Low Unreviewed
CVE-2024-40777 was published Jul 30, 2024
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to... Low Unreviewed
CVE-2023-25546 was published Sep 16, 2024
Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows... Low Unreviewed
CVE-2023-42119 was published May 3, 2024
ImageMagick has a Memory Leak in magick stream Low
CVE-2025-53019 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
momo-trip Credited to momo-trip, YutoIn, iwashiira, and utshina YutoIn YutoIn
iwashiira iwashiira utshina utshina
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a... Low Unreviewed
CVE-2025-23340 was published Sep 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database