GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
910 advisories
Filter by severity
In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource...
Moderate
Unreviewed
CVE-2024-31314
was published
Jul 9, 2024
Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds...
Moderate
Unreviewed
CVE-2024-6600
was published
Jul 9, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub...
High
Unreviewed
CVE-2024-6598
was published
Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
Moderate
Unreviewed
CVE-2024-39876
was published
Jul 9, 2024
OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability
High
CVE-2024-33862
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jul 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
xfs: fix log recovery buffer...
Moderate
Unreviewed
CVE-2024-39472
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
mmc: davinci: Don't strip...
Moderate
Unreviewed
CVE-2024-39484
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
bcache: fix variable length...
Moderate
Unreviewed
CVE-2024-39482
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
crypto: starfive - Do not...
Moderate
Unreviewed
CVE-2024-39478
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm/hugetlb: do not call...
Moderate
Unreviewed
CVE-2024-39477
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm/vmalloc: fix vmalloc...
Moderate
Unreviewed
CVE-2024-39474
was published
Jul 5, 2024
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An...
High
Unreviewed
CVE-2024-6427
was published
Jul 3, 2024
Potential memory exhaustion attack due to sparse slice deserialization
High
CVE-2024-37298
was published
for
github.com/gorilla/schema
(Go)
Jul 1, 2024
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, and 9.3 CD is vulnerable to a denial of service attack...
Moderate
Unreviewed
CVE-2024-35116
was published
Jun 29, 2024
Unlimited number of NTS-KE connections can crash ntpd-rs server
High
CVE-2024-38528
was published
for
ntpd
(Rust)
Jun 28, 2024
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD, in certain configurations, is vulnerable to...
Moderate
Unreviewed
CVE-2024-31919
was published
Jun 28, 2024
An issue the background management system of Shanxi Internet Chuangxiang Technology Co., Ltd v1.0...
Moderate
Unreviewed
CVE-2024-37681
was published
Jun 24, 2024
In the Linux kernel, the following vulnerability has been resolved:
f2fs: compress: fix to cover...
High
Unreviewed
CVE-2024-34027
was published
Jun 24, 2024
Allocation of Resources Without Limits or Throttling vulnerability in LG Electronics LG SuperSign...
Unknown
Unreviewed
CVE-2024-6176
was published
Jun 20, 2024
CrateDB has a Client initialized Session-Renegotiation DoS
Moderate
CVE-2024-37309
was published
for
io.crate:crate
(Maven)
Jun 13, 2024
gqlparser denial of service vulnerability via the parserDirectives function
Moderate
CVE-2023-49559
was published
for
github.com/vektah/gqlparser
(Go)
Jun 12, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2024-31881
was published
Jun 12, 2024
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2024-28762
was published
Jun 12, 2024
TYPO3 Denial of Service in Online Media Asset Handling
Moderate
GHSA-f3wf-q4fj-3gxf
was published
for
typo3/cms
(Composer)
Jun 7, 2024
TYPO3 Denial of Service in Frontend Record Registration
High
GHSA-g585-crjf-vhwq
was published
for
typo3/cms
(Composer)
Jun 7, 2024
ProTip!
Advisories are also available from the
GraphQL API