GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
565 advisories
Filter by severity
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via...
High
Unreviewed
CVE-2023-2879
was published
May 26, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of...
Moderate
Unreviewed
CVE-2023-2952
was published
May 31, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0...
Moderate
Unreviewed
CVE-2023-33305
was published
Jun 13, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which...
Moderate
Unreviewed
CVE-2021-33294
was published
Jul 18, 2023
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at...
Moderate
Unreviewed
CVE-2023-37748
was published
Jul 19, 2023
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are...
High
Unreviewed
CVE-2023-3748
was published
Jul 24, 2023
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The...
Moderate
Unreviewed
CVE-2023-4010
was published
Jul 31, 2023
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local...
Moderate
Unreviewed
CVE-2020-24221
was published
Aug 11, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36023
was published
Aug 11, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote...
High
Unreviewed
CVE-2023-30188
was published
Aug 14, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to...
Moderate
Unreviewed
CVE-2022-40090
was published
Aug 22, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42525
was published
Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42524
was published
Sep 18, 2023
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure...
High
Unreviewed
CVE-2023-43761
was published
Sep 22, 2023
A denial of service vulnerability exists in the DCRegister DDNS_RPC_MAX_RECV_SIZE functionality...
Moderate
Unreviewed
CVE-2023-22325
was published
Oct 12, 2023
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper...
High
Unreviewed
CVE-2023-44181
was published
Oct 13, 2023
libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be...
High
Unreviewed
CVE-2022-27781
was published
Jun 3, 2022
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)...
High
Unreviewed
CVE-2024-20353
was published
Apr 24, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/fpu: Stop relying on...
Moderate
Unreviewed
CVE-2024-26603
was published
Feb 26, 2024
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6...
High
Unreviewed
CVE-2023-38197
was published
Jul 13, 2023
aiohttp vulnerable to Denial of Service when trying to parse malformed POST requests
High
CVE-2024-30251
was published
for
aiohttp
(pip)
May 3, 2024
Undertow denial of service vulnerability
High
CVE-2023-1108
was published
for
io.undertow:undertow-core
(Maven)
Sep 14, 2023
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and...
High
Unreviewed
CVE-2019-3900
was published
May 24, 2022
Vitess vulnerable to infinite memory consumption and vtgate crash
Moderate
CVE-2024-32886
was published
for
github.com/vitessio/vitess
(Go)
May 8, 2024
ProTip!
Advisories are also available from the
GraphQL API