GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,138
Composer 4,333
Erlang 31
GitHub Actions 21
Go 2,094
Maven 5,263
npm 3,759
NuGet 678
pip 3,445
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,351

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

69 advisories

Filter by severity

Sort by

Least recently updated

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a... High Unreviewed

CVE-2024-4227 was published Jan 15, 2025

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 (2024.4.1106),... Moderate Unreviewed

CVE-2024-8049 was published Nov 13, 2024

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary:... Moderate Unreviewed

CVE-2023-3817 was published Jul 31, 2023

Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary... Moderate Unreviewed

CVE-2024-4603 was published May 16, 2024

In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in... Low Unreviewed

CVE-2022-48939 was published Aug 22, 2024

In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Validate... Moderate Unreviewed

CVE-2024-42237 was published Aug 7, 2024

In the Linux kernel, the following vulnerability has been resolved: ionic: use... Moderate Unreviewed

CVE-2024-42071 was published Jul 29, 2024

In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server... High Unreviewed

CVE-2023-5632 was published Oct 18, 2023

An issue was discovered in function get_gnu_verneed in rizinorg Rizin prior to 0.5.0... Moderate Unreviewed

CVE-2023-30226 was published Jul 12, 2023

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of... Moderate Unreviewed

CVE-2023-1993 was published Apr 12, 2023

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU... High Unreviewed

CVE-2020-35573 was published May 24, 2022

Java Facebook Thrift servers would not error upon receiving messages with containers of fields of... High Unreviewed

CVE-2019-3559 was published May 24, 2022

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of... High Unreviewed

CVE-2024-0842 was published Feb 9, 2024

A user authorized to perform database queries may trigger denial of service by issuing specially... Moderate Unreviewed

CVE-2018-20805 was published May 24, 2022

The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator)... Moderate Unreviewed

CVE-2016-7421 was published May 13, 2022

Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows... Moderate Unreviewed

CVE-2023-0411 was published Jan 26, 2023

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop... High Unreviewed

CVE-2018-9261 was published May 13, 2022

libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the... Moderate Unreviewed

CVE-2018-5252 was published May 13, 2022

An issue was discovered in Xpdf 4.00. catalog->getNumPages() in AcroForm.cc allows attackers to... Moderate Unreviewed

CVE-2018-18651 was published May 13, 2022

The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9255 was published May 13, 2022

The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9253 was published May 13, 2022

The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9256 was published May 13, 2022

The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9257 was published May 13, 2022

The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9254 was published May 13, 2022

A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to... Moderate Unreviewed

CVE-2017-2330 was published May 13, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

69 advisories