GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,031 advisories
Filter by severity
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify...
Moderate
Unreviewed
CVE-2024-8892
was published
Sep 18, 2024
vLLM Denial of Service via the best_of parameter
Moderate
CVE-2024-8939
was published
for
vllm
(pip)
Sep 17, 2024
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column)...
Moderate
Unreviewed
CVE-2024-41434
was published
Sep 3, 2024
CWA-2023-004: Excessive number of function parameters in compiled Wasm
Moderate
GHSA-75qh-gg76-p2w4
was published
for
cosmwasm-vm
(Go)
Aug 27, 2024
Mattermost Plugin Channel Export excessive resource consumption
Moderate
CVE-2024-43105
was published
for
github.com/mattermost/mattermost-plugin-channel-export
(Go)
Aug 23, 2024
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior...
Moderate
Unreviewed
CVE-2024-8041
was published
Aug 22, 2024
Mattermost versions 9.5.x <= 9.5.7 and 9.10.x <= 9.10.0 fail to time limit and size limit the CA...
Moderate
Unreviewed
CVE-2024-39810
was published
Aug 22, 2024
fugit parse and parse_nat stall on lengthy input
Moderate
CVE-2024-43380
was published
for
fugit
(RubyGems)
Aug 19, 2024
An issue in Silverpeas v.6.4.2 and lower allows a remote attacker to cause a denial of service...
Moderate
Unreviewed
CVE-2024-42849
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-4782
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-6004
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-4781
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-5209
was published
Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an...
Moderate
Unreviewed
CVE-2024-5210
was published
Aug 16, 2024
Stack overflow when parsing specially crafted JSON ABI strings
Moderate
GHSA-8327-84cj-8xjm
was published
for
alloy-json-abi
(Rust)
Aug 15, 2024
A denial-of-service vulnerability exists via the CIP/Modbus port in the Rockwell Automation...
Moderate
Unreviewed
CVE-2024-7567
was published
Aug 13, 2024
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python...
Moderate
Unreviewed
CVE-2024-0115
was published
Aug 12, 2024
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all...
Moderate
Unreviewed
CVE-2024-5423
was published
Aug 8, 2024
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions...
Moderate
Unreviewed
CVE-2024-7610
was published
Aug 8, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.10 prior to 17.0...
Moderate
Unreviewed
CVE-2024-3114
was published
Aug 8, 2024
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions...
Moderate
Unreviewed
CVE-2024-4210
was published
Aug 8, 2024
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all...
Moderate
Unreviewed
CVE-2024-2800
was published
Aug 8, 2024
Django memory consumption vulnerability
Moderate
CVE-2024-41989
was published
for
Django
(pip)
Aug 7, 2024
Podman vulnerable to memory-based denial of service
Moderate
CVE-2024-3056
was published
for
github.com/containers/podman
(Go)
Aug 2, 2024
ProTip!
Advisories are also available from the
GraphQL API