GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
626 advisories
Filter by severity
A denial-of-service issue was addressed with improved input validation. This issue is fixed in...
High
Unreviewed
CVE-2024-54538
was published
Dec 20, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2023-30443
was published
Dec 19, 2024
In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before e3277eb, unlimited user...
Unknown
Unreviewed
CVE-2024-56319
was published
Dec 19, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6,...
Moderate
Unreviewed
CVE-2024-9367
was published
Dec 12, 2024
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2,...
Moderate
Unreviewed
CVE-2024-54501
was published
Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS...
Critical
Unreviewed
CVE-2024-44241
was published
Dec 12, 2024
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the...
High
Unreviewed
CVE-2024-11316
was published
Dec 5, 2024
Denial of Service vulnerabilities where found providing a potiential for device service...
High
Unreviewed
CVE-2024-48844
was published
Dec 5, 2024
Denial of Service vulnerabilities where found providing a potiential for device service...
High
Unreviewed
CVE-2024-48843
was published
Dec 5, 2024
An issue in aedes v0.51.2 allows attackers to cause a Denial of Service(DoS) via a crafted request.
High
Unreviewed
CVE-2024-48080
was published
Dec 3, 2024
rizin before Release v0.6.3 is vulnerable to Uncontrolled Resource Consumption via...
High
Unreviewed
CVE-2024-31669
was published
Dec 2, 2024
An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows...
High
Unreviewed
CVE-2024-48530
was published
Nov 20, 2024
In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper...
Moderate
Unreviewed
CVE-2018-9412
was published
Nov 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: check outstanding...
Moderate
Unreviewed
CVE-2024-50285
was published
Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
signal: restore the...
Moderate
Unreviewed
CVE-2024-50271
was published
Nov 19, 2024
Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the...
High
Unreviewed
CVE-2021-1285
was published
Nov 18, 2024
In Bitcoin Core before 0.18.0, a node could be stalled for hours when processing the orphans of a...
High
Unreviewed
CVE-2024-52914
was published
Nov 18, 2024
Bitcoin Core before 0.15.0 allows a denial of service (OOM kill of a daemon process) via a flood...
High
Unreviewed
CVE-2024-52916
was published
Nov 18, 2024
In Bitcoin Core before 0.21.0, an attacker could prevent a node from seeing a specific...
Moderate
Unreviewed
CVE-2024-52913
was published
Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (memory...
High
Unreviewed
CVE-2024-52915
was published
Nov 18, 2024
Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash)...
High
Unreviewed
CVE-2019-25220
was published
Nov 18, 2024
Bitcoin Core before 22.0 has a miniupnp infinite loop in which it allocates memory on the basis...
Moderate
Unreviewed
CVE-2024-52917
was published
Nov 18, 2024
Bitcoin-Qt in Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2024-52918
was published
Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (infinite loop)...
High
Unreviewed
CVE-2024-52920
was published
Nov 18, 2024
In lunary-ai/lunary version 1.2.7, there is a lack of rate limiting on the forgot password page,...
High
Unreviewed
CVE-2024-3760
was published
Nov 14, 2024
ProTip!
Advisories are also available from the
GraphQL API