Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

291 advisories

Loading
Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue... High Unreviewed
CVE-2024-38286 was published Nov 7, 2024
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a... High Unreviewed
CVE-2024-48809 was published Nov 4, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed
CVE-2024-7807 was published Oct 29, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper... High Unreviewed
CVE-2024-47502 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47505 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47508 was published Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed
CVE-2024-47509 was published Oct 11, 2024
Bitcoin Core before 25.0 allows remote attackers to cause a denial of service (blocktxn message... High Unreviewed
CVE-2024-35202 was published Oct 10, 2024
Windows Hyper-V Denial of Service Vulnerability High Unreviewed
CVE-2024-43567 was published Oct 8, 2024
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)... High Unreviewed
CVE-2024-44459 was published Sep 12, 2024
Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in... High Unreviewed
CVE-2021-22532 was published Sep 12, 2024
Very large headers can cause resource exhaustion when parsing message. The message-parser... High Unreviewed
CVE-2024-23185 was published Sep 10, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)... High Unreviewed
CVE-2024-41727 was published Aug 14, 2024
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system... High Unreviewed
CVE-2024-7113 was published Aug 13, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system... High Unreviewed
CVE-2024-36462 was published Aug 12, 2024
A malicious client can send many DNS messages over TCP, potentially causing the server to become... High Unreviewed
CVE-2024-0760 was published Jul 23, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the... High Unreviewed
CVE-2024-1737 was published Jul 23, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ... High Unreviewed
CVE-2024-1975 was published Jul 23, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub... High Unreviewed
CVE-2024-6598 was published Jul 9, 2024
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An... High Unreviewed
CVE-2024-6427 was published Jul 3, 2024
In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to cover... High Unreviewed
CVE-2024-34027 was published Jun 24, 2024
is_closing_session() allows users to create arbitrary tcp dbus connections High Unreviewed
CVE-2022-28655 was published Jun 5, 2024
An excessive memory use issue (CWE-770) exists in Email-MIME, before version 1.954, which can... High Unreviewed
CVE-2024-4140 was published May 2, 2024
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for... High Unreviewed
CVE-2024-34046 was published Apr 30, 2024
In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar... High Unreviewed
CVE-2024-1666 was published Apr 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database