GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
284 advisories
Filter by severity
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2023-30443
was published
Dec 19, 2024
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due...
Moderate
Unreviewed
CVE-2024-0026
was published
May 7, 2024
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to...
Moderate
Unreviewed
CVE-2024-0027
was published
May 7, 2024
HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface...
Moderate
Unreviewed
CVE-2023-30903
was published
Jun 16, 2023
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before...
Moderate
Unreviewed
CVE-2024-2446
was published
Mar 15, 2024
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2,...
Moderate
Unreviewed
CVE-2024-54501
was published
Dec 12, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6,...
Moderate
Unreviewed
CVE-2024-9367
was published
Dec 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
IB/core: Implement a limit...
Moderate
Unreviewed
CVE-2024-42145
was published
Jul 30, 2024
IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that...
Moderate
Unreviewed
CVE-2023-47717
was published
May 16, 2024
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch...
Moderate
Unreviewed
CVE-2023-5625
was published
Nov 1, 2023
In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper...
Moderate
Unreviewed
CVE-2018-9412
was published
Nov 20, 2024
In list_key_entries of utils.rs, there is a possible way to disable user credentials due to...
Moderate
Unreviewed
CVE-2023-21176
was published
Jun 28, 2023
A denial-of-service issue was addressed with improved memory handling. This issue is fixed in iOS...
Moderate
Unreviewed
CVE-2023-32385
was published
Jun 23, 2023
Marinus Pfund, member of the AXIS OS Bug Bounty Program,
has found the VAPIX API alwaysmulti.cgi...
Moderate
Unreviewed
CVE-2024-6509
was published
Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: check outstanding...
Moderate
Unreviewed
CVE-2024-50285
was published
Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
signal: restore the...
Moderate
Unreviewed
CVE-2024-50271
was published
Nov 19, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). ...
Moderate
Unreviewed
CVE-2024-20968
was published
Feb 17, 2024
OpenLiteSpeed before 1.8.1 mishandles chunked encoding.
Moderate
Unreviewed
CVE-2024-31617
was published
May 22, 2024
Bitcoin Core before 22.0 has a miniupnp infinite loop in which it allocates memory on the basis...
Moderate
Unreviewed
CVE-2024-52917
was published
Nov 18, 2024
In Bitcoin Core before 0.21.0, an attacker could prevent a node from seeing a specific...
Moderate
Unreviewed
CVE-2024-52913
was published
Nov 18, 2024
Bitcoin-Qt in Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2024-52918
was published
Nov 18, 2024
A vulnerability has been identified in Parasolid V35.1 (All versions < V35.1.254), Parasolid V36...
Moderate
Unreviewed
CVE-2024-26276
was published
Apr 9, 2024
In validate of WifiConfigurationUtil.java , there is a possible persistent denial of service due...
Moderate
Unreviewed
CVE-2024-43083
was published
Nov 13, 2024
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation...
Moderate
Unreviewed
CVE-2024-31152
was published
Oct 30, 2024
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of...
Moderate
Unreviewed
CVE-2024-21994
was published
Nov 8, 2024
ProTip!
Advisories are also available from the
GraphQL API