Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

755 advisories

Loading
IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 could allow a remote user to... High Unreviewed
CVE-2023-47150 was published Mar 26, 2024
latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption)... High Unreviewed
CVE-2023-50967 was published Mar 20, 2024
An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x, v2.10.x, and v2.6.x leads... High Unreviewed
CVE-2024-26369 was published Mar 19, 2024
In the Linux kernel, the following vulnerability has been resolved: jfs: fix slab-out-of-bounds... High Unreviewed
CVE-2023-52602 was published Mar 6, 2024
libheif <= 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an... High Unreviewed
CVE-2024-25269 was published Mar 5, 2024
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS... High Unreviewed
CVE-2024-20321 was published Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved: net: marvell: prestera: fix... High Unreviewed
CVE-2021-47023 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: net: Only allow init netns... High Unreviewed
CVE-2021-47010 was published Feb 28, 2024
In Srelay (the SOCKS proxy and Relay) v.0.4.8p3, a specially crafted network payload can trigger... High Unreviewed
CVE-2024-25398 was published Feb 27, 2024
Windows DNS Client Denial of Service Vulnerability High Unreviewed
CVE-2024-21342 was published Feb 13, 2024
An unauthenticated remote attacker can use an uncontrolled resource consumption vulnerability to... High Unreviewed
CVE-2024-24781 was published Feb 13, 2024
libexpat through 2.5.0 allows a denial of service (resource consumption) because many full... High Unreviewed
CVE-2023-52425 was published Feb 4, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... High Unreviewed
CVE-2023-30999 was published Feb 3, 2024
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file... High Unreviewed
CVE-2023-52355 was published Jan 25, 2024
An issue was discovered in Mbed TLS 3.5.1. There is persistent handshake denial if a client sends... High Unreviewed
CVE-2024-23744 was published Jan 22, 2024
Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this... High Unreviewed
CVE-2023-52098 was published Jan 16, 2024
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. ... High Unreviewed
CVE-2023-34061 was published Jan 12, 2024
.NET Core and Visual Studio Denial of Service Vulnerability High Unreviewed
CVE-2024-20672 was published Jan 9, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2024-20661 was published Jan 9, 2024
An issue was discovered in open5gs v2.6.6. SIGPIPE can be used to crash AMF. High Unreviewed
CVE-2023-50020 was published Jan 3, 2024
Denial-of-service (DoS) vulnerability exists in NetBIOS service of HMI GC-A2 series. If a remote... High Unreviewed
CVE-2023-49713 was published Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in rfe service of HMI GC-A2 series. If a remote... High Unreviewed
CVE-2023-49143 was published Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in FTP service of HMI GC-A2 series. If a remote... High Unreviewed
CVE-2023-41963 was published Dec 12, 2023
Denial-of-service (DoS) vulnerability exists in commplex-link service of HMI GC-A2 series. If a... High Unreviewed
CVE-2023-49140 was published Dec 12, 2023
Under certain circumstances, invalid authentication credentials could be sent to the login... High Unreviewed
CVE-2023-4486 was published Dec 7, 2023
ProTip! Advisories are also available from the GraphQL API