GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
755 advisories
Filter by severity
IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 could allow a remote user to...
High
Unreviewed
CVE-2023-47150
was published
Mar 26, 2024
latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption)...
High
Unreviewed
CVE-2023-50967
was published
Mar 20, 2024
An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x, v2.10.x, and v2.6.x leads...
High
Unreviewed
CVE-2024-26369
was published
Mar 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
jfs: fix slab-out-of-bounds...
High
Unreviewed
CVE-2023-52602
was published
Mar 6, 2024
libheif <= 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an...
High
Unreviewed
CVE-2024-25269
was published
Mar 5, 2024
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS...
High
Unreviewed
CVE-2024-20321
was published
Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: marvell: prestera: fix...
High
Unreviewed
CVE-2021-47023
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: Only allow init netns...
High
Unreviewed
CVE-2021-47010
was published
Feb 28, 2024
In Srelay (the SOCKS proxy and Relay) v.0.4.8p3, a specially crafted network payload can trigger...
High
Unreviewed
CVE-2024-25398
was published
Feb 27, 2024
Windows DNS Client Denial of Service Vulnerability
High
Unreviewed
CVE-2024-21342
was published
Feb 13, 2024
An unauthenticated remote attacker can use an uncontrolled resource consumption vulnerability to...
High
Unreviewed
CVE-2024-24781
was published
Feb 13, 2024
libexpat through 2.5.0 allows a denial of service (resource consumption) because many full...
High
Unreviewed
CVE-2023-52425
was published
Feb 4, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0...
High
Unreviewed
CVE-2023-30999
was published
Feb 3, 2024
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file...
High
Unreviewed
CVE-2023-52355
was published
Jan 25, 2024
An issue was discovered in Mbed TLS 3.5.1. There is persistent handshake denial if a client sends...
High
Unreviewed
CVE-2024-23744
was published
Jan 22, 2024
Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this...
High
Unreviewed
CVE-2023-52098
was published
Jan 16, 2024
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. ...
High
Unreviewed
CVE-2023-34061
was published
Jan 12, 2024
.NET Core and Visual Studio Denial of Service Vulnerability
High
Unreviewed
CVE-2024-20672
was published
Jan 9, 2024
Microsoft Message Queuing Denial of Service Vulnerability
High
Unreviewed
CVE-2024-20661
was published
Jan 9, 2024
An issue was discovered in open5gs v2.6.6. SIGPIPE can be used to crash AMF.
High
Unreviewed
CVE-2023-50020
was published
Jan 3, 2024
Denial-of-service (DoS) vulnerability exists in NetBIOS service of HMI GC-A2 series. If a remote...
High
Unreviewed
CVE-2023-49713
was published
Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in rfe service of HMI GC-A2 series. If a remote...
High
Unreviewed
CVE-2023-49143
was published
Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in FTP service of HMI GC-A2 series. If a remote...
High
Unreviewed
CVE-2023-41963
was published
Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in commplex-link service of HMI GC-A2 series. If a...
High
Unreviewed
CVE-2023-49140
was published
Dec 12, 2023
Under certain circumstances, invalid authentication credentials could be sent to the login...
High
Unreviewed
CVE-2023-4486
was published
Dec 7, 2023
ProTip!
Advisories are also available from the
GraphQL API