Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,437
Maven
5,000+
npm
5,000+
NuGet
883
pip
4,695
Pub
13
RubyGems
1,031
Rust
1,222
Swift
53
Unreviewed advisories
All unreviewed
5,000+

837 advisories

Loading
OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel() Moderate
CVE-2025-64182 was published for OpenEXR (pip) Apr 6, 2026
MegaManSec Credited to MegaManSec
UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the... Moderate Unreviewed
CVE-2026-31058 was published Apr 6, 2026
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the... Moderate Unreviewed
CVE-2026-31066 was published Apr 6, 2026
UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the... Moderate Unreviewed
CVE-2026-31063 was published Apr 6, 2026
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the... Moderate Unreviewed
CVE-2026-31061 was published Apr 6, 2026
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the... Moderate Unreviewed
CVE-2026-31060 was published Apr 6, 2026
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the addCommand... Moderate Unreviewed
CVE-2026-31065 was published Apr 6, 2026
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the filename... Moderate Unreviewed
CVE-2026-31062 was published Apr 6, 2026
Object corruption in V8 in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to... Moderate Unreviewed
CVE-2026-5279 was published Apr 1, 2026
A flaw was found in virtio-win. The `RhelDoUnMap()` function does not properly validate the... Moderate Unreviewed
CVE-2026-5164 was published Mar 30, 2026
Buffer Overflow vulnerability in ZerBea hcxpcapngtool v. 7.0.1-43-g2ee308e allows a local... Moderate Unreviewed
CVE-2026-29976 was published Mar 26, 2026
A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Tahoe... Moderate Unreviewed
CVE-2026-28841 was published Mar 25, 2026
XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file. Moderate Unreviewed
CVE-2026-30006 was published Mar 23, 2026
In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check.... Moderate Unreviewed
CVE-2026-20436 was published Mar 2, 2026
strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the... Moderate Unreviewed
CVE-2025-61147 was published Feb 23, 2026
ScadaApp for iOS 1.1.4.0 contains a denial of service vulnerability that allows attackers to... Moderate Unreviewed
CVE-2019-25349 was published Feb 19, 2026
iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash... Moderate Unreviewed
CVE-2019-25354 was published Feb 19, 2026
Foscam Video Management System 1.1.4.9 contains a denial of service vulnerability in the username... Moderate Unreviewed
CVE-2019-25353 was published Feb 19, 2026
ipPulse 1.92 contains a denial of service vulnerability that allows local attackers to crash the... Moderate Unreviewed
CVE-2019-25326 was published Feb 19, 2026
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an authenticated user to... Moderate Unreviewed
CVE-2025-33130 was published Feb 17, 2026
SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field... Moderate Unreviewed
CVE-2020-37209 was published Feb 11, 2026
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field... Moderate Unreviewed
CVE-2020-37212 was published Feb 11, 2026
MSN Password Recovery version 1.30 contains a denial of service vulnerability that allows... Moderate Unreviewed
CVE-2020-37215 was published Feb 11, 2026
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the... Moderate Unreviewed
CVE-2020-37211 was published Feb 11, 2026
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows... Moderate Unreviewed
CVE-2020-37210 was published Feb 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database