GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
50 advisories
Leaf-kit html escaping does not work on characters that are part of extended grapheme cluster
Moderate
CVE-2026-27120
was published
for
leaf-kit
(Swift)
Feb 19, 2026
Container and Containerization archive extraction does not guard against escapes from extraction base directory.
Low
CVE-2026-20613
was published
for
github.com/apple/container
(Swift)
Jan 22, 2026
Swift W3C TraceContext vulnerable to a malformed HTTP header causing a crash
Moderate
CVE-2026-23886
was published
for
github.com/swift-otel/swift-otel
(Swift)
Jan 21, 2026
jose-swift has JWT Signature Verification Bypass via None Algorithm
High
GHSA-88q6-jcjg-hvmw
was published
for
github.com/beatt83/jose-swift
(Swift)
Jan 9, 2026
HTTP/2 Stream Cancellation Attack
Moderate
CVE-2023-44487
was published
for
com.typesafe.akka:akka-http-core
(Go)
Oct 10, 2023
ExecuTorch vulnerable to Heap-based Buffer Overflow attack
High
CVE-2025-30402
was published
for
executorch
(Maven)
Jul 11, 2025
ExecuTorch integer overflow vulnerability
Critical
CVE-2025-30405
was published
for
executorch
(Maven)
Aug 8, 2025
ExecuTorch integer overflow vulnerability
Critical
CVE-2025-30404
was published
for
executorch
(Maven)
Aug 8, 2025
ExecuTorch vulnerable to Heap-based Buffer Overflow
Critical
CVE-2025-54951
was published
for
executorch
(Maven)
Aug 8, 2025
ExecuTorch heap buffer overflow vulnerability
Critical
CVE-2025-54949
was published
for
executorch
(Maven)
Aug 8, 2025
ExecuTorch out-of-bounds access vulnerability
Critical
CVE-2025-54950
was published
for
executorch
(Maven)
Aug 8, 2025
swift-nio-http2 affected by HTTP/2 MadeYouReset vulnerability
Moderate
GHSA-xvr7-p2c6-j83w
was published
for
github.com/apple/swift-nio-http2
(Swift)
Aug 13, 2025
SwiftNIO SSL arbitrary code execution vulnerability
Critical
CVE-2019-8849
was published
for
github.com/apple/swift-nio-ssl
(Swift)
May 24, 2022
CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER
Low
CVE-2025-0343
was published
for
github.com/apple/swift-asn1
(Swift)
Jan 14, 2025
ProTip!
Advisories are also available from the
GraphQL API