Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,003
Maven
5,000+
npm
4,732
NuGet
788
pip
4,341
Pub
12
RubyGems
987
Rust
1,137
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,378 advisories

Loading
Bridge versions 15.1.2, 16.0 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-21283 was published Jan 13, 2026
Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker... High Unreviewed
CVE-2026-20957 was published Jan 13, 2026
Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an... Moderate Unreviewed
CVE-2026-20876 was published Jan 13, 2026
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally. High Unreviewed
CVE-2026-20922 was published Jan 13, 2026
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2026-20868 was published Jan 13, 2026
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally. High Unreviewed
CVE-2026-20840 was published Jan 13, 2026
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2026-20837 was published Jan 13, 2026
Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized... High Unreviewed
CVE-2026-20864 was published Jan 13, 2026
Time-of-check time-of-use (toctou) race condition in Windows Kernel Memory allows an authorized... High Unreviewed
CVE-2026-20809 was published Jan 13, 2026
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker... High Unreviewed
CVE-2026-20820 was published Jan 13, 2026
A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0... High Unreviewed
CVE-2025-25249 was published Jan 13, 2026
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Low Unreviewed
CVE-2025-46643 was published Jan 9, 2026
gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers... Critical Unreviewed
CVE-2025-67268 was published Jan 2, 2026
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15272 was published Dec 31, 2025
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15275 was published Dec 31, 2025
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15274 was published Dec 31, 2025
FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2025-15277 was published Dec 31, 2025
FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2025-15279 was published Dec 31, 2025
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a... Low Unreviewed
CVE-2025-11961 was published Dec 31, 2025
An issue was discovered in matio 1.5.28. A heap-based memory corruption can occur in... Critical Unreviewed
CVE-2025-50343 was published Dec 30, 2025
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8. High Unreviewed
CVE-2025-66869 was published Dec 29, 2025
A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26... High Unreviewed
CVE-2025-66862 was published Dec 29, 2025
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-14425 was published Dec 24, 2025
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-12495 was published Dec 24, 2025
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-12839 was published Dec 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database