GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,202

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

348 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the... High Unreviewed

CVE-2023-30455 was published Apr 28, 2023

Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed

CVE-2023-28882 was published Apr 28, 2023

Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it... High Unreviewed

CVE-2024-12705 was published Jan 30, 2025

IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2023-26285 was published May 5, 2023

An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed

CVE-2024-57519 was published Jan 29, 2025

In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API... High Unreviewed

CVE-2024-56316 was published Jan 28, 2025

An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may... High Unreviewed

CVE-2024-55195 was published Jan 24, 2025

A vulnerability has been identified where a maliciously crafted message containing a specific... High Unreviewed

CVE-2023-28356 was published May 12, 2023

In several functions of SnoozeHelper.java, there is a possible way to grant notifications access... High Unreviewed

CVE-2023-21110 was published May 16, 2023

An issue in the sqlg_group_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57664 was published Jan 14, 2025

An issue in the sqlg_hash_source component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57662 was published Jan 14, 2025

An issue in the sqlg_place_dpipes component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57663 was published Jan 14, 2025

Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed

CVE-2023-37014 was published Jan 22, 2025

Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `UE Context Release Request`... High Unreviewed

CVE-2023-37022 was published Jan 22, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). ... High Unreviewed

CVE-2025-21521 was published Jan 21, 2025

In multiple locations, there is a possible failure to persist permissions settings due to... High Unreviewed

CVE-2024-49735 was published Jan 22, 2025

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed

CVE-2025-21549 was published Jan 21, 2025

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... High Unreviewed

CVE-2025-21545 was published Jan 21, 2025

A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a... High Unreviewed

CVE-2024-3382 was published Apr 10, 2024

IBM TXSeries for Multiplatforms 10.1 could allow a remote attacker to cause a denial of service... High Unreviewed

CVE-2024-41743 was published Jan 19, 2025

IBM TXSeries for Multiplatforms 10.1 is vulnerable to a denial of service, caused by improper... High Unreviewed

CVE-2024-41742 was published Jan 19, 2025

IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6... High Unreviewed

CVE-2024-45662 was published Jan 18, 2025

An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource... High Unreviewed

CVE-2018-25108 was published Jan 16, 2025

Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially... High Unreviewed

CVE-2019-9517 was published May 24, 2022

Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a... High Unreviewed

CVE-2019-9518 was published May 24, 2022

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

348 advisories