GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
358 advisories
Filter by severity
CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability...
Moderate
Unreviewed
CVE-2026-48298
was published
Jul 15, 2026
CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability...
Moderate
Unreviewed
CVE-2026-48296
was published
Jul 15, 2026
Integer underflow (wrap or wraparound) in Microsoft Defender allows an unauthorized attacker to...
High
Unreviewed
CVE-2026-55011
was published
Jul 14, 2026
Integer underflow (wrap or wraparound) in Reliable Multicast Transport Driver (RMCAST) allows an...
High
Unreviewed
CVE-2026-54982
was published
Jul 14, 2026
Integer underflow (wrap or wraparound) in Windows DHCP Client allows an unauthorized attacker to...
High
Unreviewed
CVE-2026-49181
was published
Jul 14, 2026
OpENer 2.3.0 (master branch up to commit 76b95cf) is vulnerable to a severe memory corruption...
Critical
Unreviewed
CVE-2026-51540
was published
Jul 14, 2026
U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the...
High
Unreviewed
CVE-2026-29008
was published
Jul 8, 2026
FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in f_read...
Moderate
Unreviewed
CVE-2026-6685
was published
Jul 1, 2026
A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the...
High
Unreviewed
CVE-2026-58016
was published
Jun 30, 2026
Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in...
Moderate
Unreviewed
CVE-2026-58058
was published
Jun 28, 2026
libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in...
High
Unreviewed
CVE-2026-57918
was published
Jun 26, 2026
Integer underflow in wc_PKCS7_DecryptOri when handling crafted Other Recipient Info, leading to...
Low
Unreviewed
CVE-2026-6678
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
staging: rtl8723bs: rtw_mlme...
High
Unreviewed
CVE-2026-53178
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
IB/isert: Reject login PDUs...
Critical
Unreviewed
CVE-2026-53176
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
thunderbolt: Reject zero...
Moderate
Unreviewed
CVE-2026-53150
was published
Jun 25, 2026
In the Linux kernel, the following vulnerability has been resolved:
fs/omfs: reject...
High
Unreviewed
CVE-2026-53130
was published
Jun 24, 2026
In the Linux kernel, the following vulnerability has been resolved:
batman-adv: fix tp_meter...
High
Unreviewed
CVE-2026-52919
was published
Jun 24, 2026
Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows...
High
Unreviewed
CVE-2026-30803
was published
Jun 17, 2026
An integer underflow vulnerability was found in MIT krb5 in the berval2tl_data() function in...
Moderate
Unreviewed
CVE-2026-11850
was published
Jun 11, 2026
Integer underflow (wrap or wraparound) in Windows Performance Monitor allows an unauthorized...
High
Unreviewed
CVE-2026-42981
was published
Jun 9, 2026
A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned...
Moderate
Unreviewed
CVE-2026-11789
was published
Jun 9, 2026
Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6...
High
Unreviewed
CVE-2026-49494
was published
Jun 7, 2026
Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite...
High
Unreviewed
CVE-2026-50593
was published
Jun 5, 2026
FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t...
High
Unreviewed
CVE-2026-37231
was published
Jun 1, 2026
In the Linux kernel, the following vulnerability has been resolved:
dm-thin: fix metadata...
High
Unreviewed
CVE-2026-46107
was published
May 28, 2026
ProTip!
Advisories are also available from the
GraphQL API