Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
43
Go
3,181
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,474
Pub
12
RubyGems
991
Rust
1,185
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

7,132 advisories

Loading
Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder (libavcodec/rv60dec.c). The... Moderate Unreviewed
CVE-2025-69693 was published Mar 16, 2026
An out-of-bounds memory access (OOB) in p2r3 Bareiron commit 8e4d40 allows unauthenticated... Critical Unreviewed
CVE-2025-69808 was published Mar 16, 2026
A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically... Moderate Unreviewed
CVE-2026-3442 was published Mar 16, 2026
A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an... Moderate Unreviewed
CVE-2026-3441 was published Mar 16, 2026
arduino-TuyaOpen before version 1.2.1 contains an out-of-bounds memory read vulnerability in the... High Unreviewed
CVE-2026-28521 was published Mar 16, 2026
Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of... Low Unreviewed
CVE-2025-71264 was published Mar 16, 2026
There is a memory corruption vulnerability due to an out-of-bounds read when loading a corrupted... High Unreviewed
CVE-2026-0956 was published Mar 13, 2026
There is a memory corruption vulnerability due to an out-of-bounds read when loading a corrupted... High Unreviewed
CVE-2026-0955 was published Mar 13, 2026
An Out-of-Bounds Read vulnerability exists in the ASUS Business System Control Interface driver.... Moderate Unreviewed
CVE-2025-15038 was published Mar 12, 2026
Out of bounds read in Web Speech in Google Chrome prior to 146.0.7680.71 allowed a remote... Critical Unreviewed
CVE-2026-3916 was published Mar 12, 2026
Out of bounds memory access in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote... High Unreviewed
CVE-2026-3920 was published Mar 12, 2026
Out of bounds read in V8 in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to... High Unreviewed
CVE-2026-3926 was published Mar 12, 2026
Easy Grade Pro 4.1.0.2 contains a file parsing logic flaw in the handling of proprietary .EGP... Low Unreviewed
CVE-2025-70330 was published Mar 11, 2026
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2026-27270 was published Mar 11, 2026
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability... Moderate Unreviewed
CVE-2026-27268 was published Mar 11, 2026
Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when... High Unreviewed
CVE-2026-27269 was published Mar 10, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an Out-of-bounds Read... Moderate Unreviewed
CVE-2026-27219 was published Mar 10, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2026-21365 was published Mar 10, 2026
Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2026-27216 was published Mar 10, 2026
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code... High Unreviewed
CVE-2026-26109 was published Mar 10, 2026
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-25175 was published Mar 10, 2026
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate... High Unreviewed
CVE-2026-25174 was published Mar 10, 2026
Out-of-bounds read in Push Message Routing Service allows an authorized attacker to disclose... Moderate Unreviewed
CVE-2026-24282 was published Mar 10, 2026
Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a... High Unreviewed
CVE-2026-25181 was published Mar 10, 2026
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose... Moderate Unreviewed
CVE-2026-25180 was published Mar 10, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database