Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,900
Maven
5,000+
npm
4,552
NuGet
786
pip
4,287
Pub
12
RubyGems
979
Rust
1,110
Swift
49
Unreviewed advisories
All unreviewed
5,000+

7,220 advisories

Loading
An out-of-bounds read vulnerability has been identified in the Postscript interpreter in various... Moderate Unreviewed
CVE-2025-65081 was published Feb 3, 2026
In Modem, there is a possible system crash due to incorrect error handling. This could lead to... High Unreviewed
CVE-2026-20420 was published Feb 2, 2026
In Modem, there is a possible system crash due to improper input validation. This could lead to... High Unreviewed
CVE-2026-20421 was published Feb 2, 2026
An out-of-bounds read in the mk_ptr_to_buf in mk_core function (mk_memory.c) of monkey commit... High Unreviewed
CVE-2025-63650 was published Jan 29, 2026
An out-of-bounds read in the mk_mimetype_find function (mk_server/mk_mimetype.c) of monkey commit... High Unreviewed
CVE-2025-63657 was published Jan 29, 2026
An out-of-bounds read in the header_cmp function (mk_server/mk_http_parser.c) of monkey commit... High Unreviewed
CVE-2025-63656 was published Jan 29, 2026
An out-of-bounds read in the mk_vhost_fdt_close function (mk_server/mk_vhost.c) of monkey commit... High Unreviewed
CVE-2025-63653 was published Jan 29, 2026
An out-of-bounds read in the http_parser_transfer_encoding_chunked function (mk_server... High Unreviewed
CVE-2025-63649 was published Jan 29, 2026
An out-of-bounds read vulnerability in the TeamViewer DEX Client (former 1E Client) - Content... Moderate Unreviewed
CVE-2026-23569 was published Jan 29, 2026
An out-of-bounds read vulnerability in the TeamViewer DEX Client (former 1E Client) - Content... Moderate Unreviewed
CVE-2026-23568 was published Jan 29, 2026
A segmentation violation in the oneflow.logical_or component of OneFlow v0.9.0 allows attackers... Moderate Unreviewed
CVE-2025-71004 was published Jan 28, 2026
A segmentation violation in the flow.column_stack component of OneFlow v0.9.0 allows attackers to... Moderate Unreviewed
CVE-2025-71001 was published Jan 28, 2026
Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr... Moderate Unreviewed
CVE-2023-21477 was published Jan 28, 2026
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 26... Moderate Unreviewed
CVE-2025-46316 was published Jan 28, 2026
The issue was addressed with improved bounds checks. This issue is fixed in macOS Tahoe 26,... Moderate Unreviewed
CVE-2025-46306 was published Jan 28, 2026
Out-of-bounds Read vulnerability in Rinnegatamante lpp-vita.This issue affects lpp-vita: before... High Unreviewed
CVE-2026-24873 was published Jan 27, 2026
A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs... Low Unreviewed
CVE-2026-1485 was published Jan 27, 2026
Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out... Critical Unreviewed
CVE-2026-24826 was published Jan 27, 2026
A low privileged remote attacker may be able to disclose confidential information from the memory... Moderate Unreviewed
CVE-2025-41728 was published Jan 27, 2026
Out-of-bounds Read vulnerability in praydog UEVR (dependencies/lua/src modules). This... Moderate Unreviewed
CVE-2026-24818 was published Jan 27, 2026
Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEngine/LUA modules). This... Moderate Unreviewed
CVE-2026-24820 was published Jan 27, 2026
Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEngine/LUA modules). This... Critical Unreviewed
CVE-2026-24821 was published Jan 27, 2026
Out-of-bounds Read vulnerability in CloverHackyColor CloverBootloader (MdeModulePkg/Universal... Moderate Unreviewed
CVE-2026-24796 was published Jan 27, 2026
Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64 Moderate
CVE-2026-24116 was published for wasmtime (Rust) Jan 27, 2026
louismerlin
Credited to louismerlin
Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote... High Unreviewed
CVE-2026-0899 was published Jan 20, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database