Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,626 advisories

Loading
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions... Moderate Unreviewed
CVE-2024-4210 was published Aug 8, 2024
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all... Moderate Unreviewed
CVE-2024-2800 was published Aug 8, 2024
PrivX before 34.0 allows data exfiltration and denial of service via the REST API. This is fixed... High Unreviewed
CVE-2024-30170 was published Aug 6, 2024
A denial-of-service vulnerability could allow an authenticated user to trigger an internal... Low Unreviewed
CVE-2022-4003 was published Jul 31, 2024
An issue was discovered in Kibana where a user with Viewer role could cause a Kibana instance to... Moderate Unreviewed
CVE-2024-37281 was published Jul 31, 2024
A logic issue was addressed with improved state management. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2024-27862 was published Jul 30, 2024
An issue in the Certificate Authenticated Session Establishment (CASE) protocol for establishing... Moderate Unreviewed
CVE-2024-3297 was published Jul 24, 2024
Vulnerability in the Oracle Database Portable Clusterware component of Oracle Database Server. ... Moderate Unreviewed
CVE-2024-21126 was published Jul 17, 2024
A Denial of Service vulnerability was identified in GitHub Enterprise Server that allowed an... High Unreviewed
CVE-2024-5795 was published Jul 17, 2024
A flaw was found in libtiff. This flaw allows an attacker to create a crafted tiff file, forcing... Moderate Unreviewed
CVE-2024-6716 was published Jul 15, 2024
A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function... Moderate Unreviewed
CVE-2023-39329 was published Jul 13, 2024
A flaw was found in OpenJPEG. Maliciously constructed pictures can cause the program to enter a... Moderate Unreviewed
CVE-2023-39327 was published Jul 13, 2024
An Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks... High Unreviewed
CVE-2024-39548 was published Jul 11, 2024
An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway)... High Unreviewed
CVE-2024-39551 was published Jul 11, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows an attacker to create... High Unreviewed
CVE-2024-6037 was published Jul 11, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to restart the... High Unreviewed
CVE-2024-6036 was published Jul 11, 2024
An Uncontrolled Resource Consumption vulnerability in the Layer 2 Address Learning Daemon ... High Unreviewed
CVE-2024-39557 was published Jul 11, 2024
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled... Low Unreviewed
CVE-2024-6501 was published Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with... High Unreviewed
CVE-2024-29153 was published Jul 9, 2024
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38067 was published Jul 9, 2024
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38068 was published Jul 9, 2024
Windows Line Printer Daemon Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-38027 was published Jul 9, 2024
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38031 was published Jul 9, 2024
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability High Unreviewed
CVE-2024-38015 was published Jul 9, 2024
Windows iSCSI Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-35270 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database