GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,512
Composer 4,179
Erlang 31
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 233,049

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

291 advisories

Filter by severity

Sort by

Least recently updated

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a... High Unreviewed

CVE-2024-3382 was published Apr 10, 2024

HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to... High Unreviewed

CVE-2024-27316 was published Apr 4, 2024

An issue was discovered in Couchbase Server 6.6.x through 7.2.0, before 7.1.5 and 7.2.1.... High Unreviewed

CVE-2023-43768 was published Mar 27, 2024

VSeeFace through 1.13.38.c2 allows attackers to cause a denial of service (application hang) via... High Unreviewed

CVE-2024-26577 was published Mar 27, 2024

In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory... High Unreviewed

CVE-2021-47137 was published Mar 25, 2024

Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged... High Unreviewed

CVE-2020-11862 was published Mar 14, 2024

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI... High Unreviewed

CVE-2024-22255 was published Mar 5, 2024

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5... High Unreviewed

CVE-2024-26461 was published Feb 29, 2024

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS... High Unreviewed

CVE-2024-20321 was published Feb 29, 2024

When SSL Client Certificate LDAP or Certificate Revocation List Distribution Point (CRLDP)... High Unreviewed

CVE-2024-23979 was published Feb 14, 2024

For unspecified traffic patterns, BIG-IP AFM IPS engine may spend an excessive amount of time... High Unreviewed

CVE-2024-21771 was published Feb 14, 2024

Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers... High Unreviewed

CVE-2023-50387 was published Feb 14, 2024

To keep its cache database efficient, `named` running as a recursive resolver occasionally... High Unreviewed

CVE-2023-6516 was published Feb 13, 2024

In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of... High Unreviewed

CVE-2023-52427 was published Feb 11, 2024

An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper... High Unreviewed

CVE-2024-21604 was published Jan 12, 2024

A flaw was found in EAP-7 during deserialization of certain classes, which permits instantiation... High Unreviewed

CVE-2023-3171 was published Dec 27, 2023

A flaw was found in Undertow. When an AJP request is sent that exceeds the max-header-size... High Unreviewed

CVE-2023-5379 was published Dec 13, 2023

An issue was discovered in Zammad before 6.2.0. Due to lack of rate limiting in the "email... High Unreviewed

CVE-2023-50455 was published Dec 10, 2023

Under certain circumstances, invalid authentication credentials could be sent to the login... High Unreviewed

CVE-2023-4486 was published Dec 7, 2023

A lack of rate limiting in pjActionAJaxSend in Availability Booking Calendar 5.0 allows attackers... High Unreviewed

CVE-2023-48831 was published Dec 7, 2023

A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow... High Unreviewed

CVE-2023-20155 was published Nov 1, 2023

An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in... High Unreviewed

CVE-2023-45862 was published Oct 14, 2023

An Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos... High Unreviewed

CVE-2023-44191 was published Oct 13, 2023

When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server,... High Unreviewed

CVE-2023-40542 was published Oct 10, 2023

Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing... High Unreviewed

CVE-2023-5330 was published Oct 9, 2023

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

291 advisories