Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+

802 advisories

Loading
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a... High Unreviewed
CVE-2024-48809 was published Nov 4, 2024
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7... Moderate Unreviewed
CVE-2024-10599 was published Nov 1, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed
CVE-2024-7807 was published Oct 29, 2024
Potential race conditions in IndexedDB could have caused memory corruption, leading to a... Critical Unreviewed
CVE-2024-10468 was published Oct 29, 2024
Mattermost Server vulnerable to application crash from attacker-generated large response Moderate
CVE-2024-47401 was published for github.com/mattermost/mattermost/server/v8 (Go) Oct 29, 2024
Spring Security vulnerable to Authorization Bypass of Static Resources in WebFlux Applications Critical
CVE-2024-38821 was published for org.springframework.security:spring-security-web (Maven) Oct 28, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4... Moderate Unreviewed
CVE-2024-6826 was published Oct 24, 2024
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow... Moderate Unreviewed
CVE-2024-20526 was published Oct 23, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2024-31880 was published Oct 23, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to... Moderate Unreviewed
CVE-2024-50311 was published Oct 22, 2024
Security Update for the OPC UA .NET Standard Stack Moderate
CVE-2024-45526 was published for OPCFoundation.NetStandard.Opc.Ua (NuGet) Oct 18, 2024
Security Update for the OPC UA .NET Standard Stack High
GHSA-qm9f-c3v9-wphv was published for OPCFoundation.NetStandard.Opc.Ua (NuGet) Oct 18, 2024
Possible ReDoS vulnerability in query parameter filtering in Action Dispatch Moderate
CVE-2024-41128 was published for actionpack (RubyGems) Oct 15, 2024
Starlette Denial of service (DoS) via multipart/form-data High
CVE-2024-47874 was published for starlette (pip) Oct 15, 2024
defnull
An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper... High Unreviewed
CVE-2024-47502 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47509 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47505 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47508 was published Oct 11, 2024
Bitcoin Core before 25.0 allows remote attackers to cause a denial of service (blocktxn message... High Unreviewed
CVE-2024-35202 was published Oct 10, 2024
Windows Hyper-V Denial of Service Vulnerability High Unreviewed
CVE-2024-43567 was published Oct 8, 2024
Improper resource management in firmware of some Solidigm DC Products may allow an attacker to... Moderate Unreviewed
CVE-2024-47969 was published Oct 8, 2024
Improper resource initialization handling in firmware of some Solidigm DC Products may allow an... Critical Unreviewed
CVE-2024-47967 was published Oct 7, 2024
async-graphql Directive Overload High
CVE-2024-47614 was published for async-graphql (Rust) Oct 3, 2024
MindPatch
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)... High Unreviewed
CVE-2024-44459 was published Sep 12, 2024
Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in... High Unreviewed
CVE-2021-22532 was published Sep 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database