Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

737 advisories

Loading
No Limit on Number of Open Sessions / Bad Session Close Behaviour in dnf5daemon-server before 5... Moderate Unreviewed
CVE-2024-1930 was published May 8, 2024
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due... Moderate Unreviewed
CVE-2024-0026 was published May 7, 2024
An issue discovered in httpd in ASUS RT-AC51U with firmware version up to and including 3.0.0.4... Moderate Unreviewed
CVE-2023-31889 was published Apr 29, 2024
Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2024-33259 was published Apr 26, 2024
A flaw was found in Bombastic, which allows authenticated users to upload compressed (bzip2 or... Moderate Unreviewed
CVE-2024-3508 was published Apr 25, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-21057 was published Apr 17, 2024
parisneo/lollms-webui is vulnerable to a denial of service (DoS) attack due to uncontrolled... Moderate Unreviewed
CVE-2024-1569 was published Apr 16, 2024
Dell Storage Resource Manager, 4.9.0.0 and below, contain(s) a Session Fixation Vulnerability in... Moderate Unreviewed
CVE-2024-0157 was published Apr 12, 2024
A denial of service vulnerability was identified in GitLab CE/EE, versions 16.7.7 prior to 16.8.6... Moderate Unreviewed
CVE-2023-6489 was published Apr 12, 2024
An issue has been discovered in GitLab EE affecting all versions before 16.8.6, all versions... Moderate Unreviewed
CVE-2023-6678 was published Apr 12, 2024
The ABAP Application Server of SAP NetWeaver as well as ABAP Platform allows an attacker to... Moderate Unreviewed
CVE-2024-30218 was published Apr 9, 2024
IBM WebSphere Application Server Liberty 18.0.0.2 through 24.0.0.3 is vulnerable to a denial of... Moderate Unreviewed
CVE-2024-27268 was published Apr 4, 2024
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 is vulnerable to a denial of... Moderate Unreviewed
CVE-2024-22353 was published Mar 31, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions... Moderate Unreviewed
CVE-2024-2818 was published Mar 28, 2024
A vulnerability exists in the affected product that allows a malicious user to restart the... Moderate Unreviewed
CVE-2024-21914 was published Mar 26, 2024
The Mojolicious module before 7.66 for Perl may leak cookies in certain situations related to... Moderate Unreviewed
CVE-2018-25100 was published Mar 24, 2024
Uncontrolled resource consumption for some Intel(R) SPS firmware before version SPS_E5_06.01.04... Moderate Unreviewed
CVE-2023-29153 was published Mar 22, 2024
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before... Moderate Unreviewed
CVE-2024-2446 was published Mar 15, 2024
Uncontrolled resource consumption for some Intel(R) SPS firmware versions may allow a privileged... Moderate Unreviewed
CVE-2023-35191 was published Mar 14, 2024
IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial... Moderate Unreviewed
CVE-2022-43880 was published Mar 3, 2024
A vulnerability in system resource management in Cisco UCS 6400 and 6500 Series Fabric... Moderate Unreviewed
CVE-2024-20344 was published Feb 29, 2024
Due to an allocation of resources without limits, an uncontrolled resource consumption... Moderate Unreviewed
CVE-2023-51393 was published Feb 23, 2024
Denial of service condition in M-Files Server in versions before 24.2 (excluding 23.2 SR7 and 23... Moderate Unreviewed
CVE-2024-0563 was published Feb 23, 2024
A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be... Moderate Unreviewed
CVE-2024-0240 was published Feb 15, 2024
Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Uncontrolled... Moderate Unreviewed
CVE-2024-20716 was published Feb 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database