GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,852

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

353 advisories

Filter by severity

Sort by

Least recently updated

Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it... High Unreviewed

CVE-2024-12705 was published Jan 30, 2025

TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error, with RpcStatus... High Unreviewed

CVE-2023-30636 was published Apr 14, 2023

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to... High Unreviewed

CVE-2024-2878 was published Feb 5, 2025

An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed

CVE-2024-57519 was published Jan 29, 2025

When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is... High Unreviewed

CVE-2025-24312 was published Feb 5, 2025

Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a... High Unreviewed

CVE-2023-29779 was published Apr 25, 2023

Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines() method would not ... High Unreviewed

CVE-2024-12254 was published Dec 6, 2024

An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the... High Unreviewed

CVE-2023-30455 was published Apr 28, 2023

Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed

CVE-2023-28882 was published Apr 28, 2023

IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2023-26285 was published May 5, 2023

In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API... High Unreviewed

CVE-2024-56316 was published Jan 28, 2025

An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may... High Unreviewed

CVE-2024-55195 was published Jan 24, 2025

A vulnerability has been identified where a maliciously crafted message containing a specific... High Unreviewed

CVE-2023-28356 was published May 12, 2023

In several functions of SnoozeHelper.java, there is a possible way to grant notifications access... High Unreviewed

CVE-2023-21110 was published May 16, 2023

An issue in the sqlg_group_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57664 was published Jan 14, 2025

An issue in the sqlg_hash_source component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57662 was published Jan 14, 2025

An issue in the sqlg_place_dpipes component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57663 was published Jan 14, 2025

Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed

CVE-2023-37014 was published Jan 22, 2025

Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `UE Context Release Request`... High Unreviewed

CVE-2023-37022 was published Jan 22, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). ... High Unreviewed

CVE-2025-21521 was published Jan 21, 2025

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed

CVE-2025-21549 was published Jan 21, 2025

In multiple locations, there is a possible failure to persist permissions settings due to... High Unreviewed

CVE-2024-49735 was published Jan 22, 2025

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... High Unreviewed

CVE-2025-21545 was published Jan 21, 2025

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a... High Unreviewed

CVE-2024-3382 was published Apr 10, 2024

IBM TXSeries for Multiplatforms 10.1 could allow a remote attacker to cause a denial of service... High Unreviewed

CVE-2024-41743 was published Jan 19, 2025

Previous 1 2 3 4 5 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

353 advisories