Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,521
Maven
5,000+
npm
5,000+
NuGet
912
pip
4,768
Pub
13
RubyGems
1,036
Rust
1,229
Swift
53
Unreviewed advisories
All unreviewed
5,000+

1,539 advisories

Loading
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27238 was published Apr 14, 2026
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... Moderate Unreviewed
CVE-2026-27285 was published Apr 14, 2026
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... Moderate Unreviewed
CVE-2026-27286 was published Apr 14, 2026
A heap-based buffer overflow vulnerability in Fortinet FortiAnalyzer Cloud 7.6.2 through 7.6.4,... High Unreviewed
CVE-2026-22828 was published Apr 14, 2026
ImageMagick has a heap Buffer Overflow in ImageMagick MVG decoder High
CVE-2026-33901 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
Xenomega Credited to Xenomega
ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml. Moderate
CVE-2026-33899 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 13, 2026
unbengable12 Credited to unbengable12
A heap buffer overflow in the av_bprint_finalize() function of FFmpeg v8.0.1 allows attackers to... High Unreviewed
CVE-2026-30999 was published Apr 13, 2026
Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this... Critical Unreviewed
CVE-2026-34865 was published Apr 13, 2026
Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows out-of-bounds... High Unreviewed
CVE-2026-25205 was published Apr 13, 2026
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-4153 was published Apr 11, 2026
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-4152 was published Apr 11, 2026
X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A buffer overflow... Low Unreviewed
CVE-2026-5448 was published Apr 10, 2026
Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted... High Unreviewed
CVE-2026-5264 was published Apr 10, 2026
Heap buffer overflow in CertFromX509 via AuthorityKeyIdentifier size confusion. A heap buffer... Moderate Unreviewed
CVE-2026-5447 was published Apr 9, 2026
Two potential heap out-of-bounds write locations existed in DecodeObjectId() in wolfcrypt/src/asn... Low Unreviewed
CVE-2026-5187 was published Apr 9, 2026
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote... High Unreviewed
CVE-2026-5868 was published Apr 9, 2026
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker... Moderate Unreviewed
CVE-2026-5867 was published Apr 9, 2026
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker... High Unreviewed
CVE-2026-5858 was published Apr 9, 2026
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker... Moderate Unreviewed
CVE-2026-5869 was published Apr 9, 2026
Heap buffer overflow in WebAudio in Google Chrome prior to 147.0.7727.55 allowed a remote... Moderate Unreviewed
CVE-2026-5864 was published Apr 9, 2026
Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations. High Unreviewed
CVE-2026-21372 was published Apr 6, 2026
Hirschmann Industrial IT products contain a heap overflow vulnerability in the HiLCOS web... High Unreviewed
CVE-2024-14033 was published Apr 2, 2026
A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 in the HTTP... High Unreviewed
CVE-2026-34118 was published Apr 2, 2026
A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the... High Unreviewed
CVE-2026-34120 was published Apr 2, 2026
A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the... High Unreviewed
CVE-2026-34119 was published Apr 2, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database