Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,248
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,513
Pub
12
RubyGems
997
Rust
1,189
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

147 advisories

Loading
libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif_mnote_data_get_value... High Unreviewed
CVE-2026-32775 was published Mar 16, 2026
GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-3084 was published Mar 16, 2026
Integer overflow in Skia in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to... High Unreviewed
CVE-2026-3538 was published Mar 4, 2026
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database... High Unreviewed
CVE-2026-3172 was published Feb 25, 2026
In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2... High Unreviewed
CVE-2025-62291 was published Jan 16, 2026
An integer underflow vulnerability exists in the `nextstate()` function in `gpsd/packet.c` of... High Unreviewed
CVE-2025-67269 was published Jan 2, 2026
Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decode_definite_long_string(... High Unreviewed
CVE-2025-64076 was published Nov 18, 2025
A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library,... High Unreviewed
CVE-2025-4948 was published May 19, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61835 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61836 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61826 was published Nov 11, 2025
An out-of-bounds write vulnerability exists in the dcm_pixel_data_decode functionality of... High Unreviewed
CVE-2023-32653 was published Sep 25, 2023
In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent... High Unreviewed
CVE-2024-53061 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: hwmon: (adc128d818) Fix... High Unreviewed
CVE-2024-46759 was published Sep 18, 2024
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of... High Unreviewed
CVE-2024-54028 was published Jun 2, 2025
An integer overflow vulnerability exists in the QuickJS regular expression engine (libregexp) due... High Unreviewed
CVE-2025-62495 was published Oct 16, 2025
Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0... High Unreviewed
CVE-2014-0497 was published May 14, 2022
Windows NTFS Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-31956 was published May 24, 2022
In the Linux kernel, the following vulnerability has been resolved: remoteproc: Fix count check... High Unreviewed
CVE-2022-49278 was published Sep 22, 2025
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component... High Unreviewed
CVE-2025-3947 was published Jul 10, 2025
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-49532 was published Jul 9, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap... High Unreviewed
CVE-2025-47130 was published Jul 9, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow (Wrap... High Unreviewed
CVE-2025-47128 was published Jul 9, 2025
InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-47136 was published Jul 9, 2025
InCopy versions 20.3, 19.5.3 and earlier are affected by an Integer Underflow (Wrap or Wraparound... High Unreviewed
CVE-2025-47097 was published Jul 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database