Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

328 advisories

Loading
IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6... High Unreviewed
CVE-2024-45662 was published Jan 18, 2025
An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource... High Unreviewed
CVE-2018-25108 was published Jan 16, 2025
A allocation of resources without limits or throttling in Fortinet FortiSIEM 5.3 all versions, 5... High Unreviewed
CVE-2024-46667 was published Jan 14, 2025
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiOS... High Unreviewed
CVE-2024-46668 was published Jan 14, 2025
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access... High Unreviewed
CVE-2024-43064 was published Jan 6, 2025
A denial-of-service issue was addressed with improved input validation. This issue is fixed in... High Unreviewed
CVE-2024-54538 was published Dec 20, 2024
In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before e3277eb, unlimited user... High Unreviewed
CVE-2024-56319 was published Dec 19, 2024
Denial of Service vulnerabilities where found providing a potiential for device service... High Unreviewed
CVE-2024-48844 was published Dec 5, 2024
Denial of Service vulnerabilities where found providing a potiential for device service... High Unreviewed
CVE-2024-48843 was published Dec 5, 2024
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the... High Unreviewed
CVE-2024-11316 was published Dec 5, 2024
An issue in aedes v0.51.2 allows attackers to cause a Denial of Service(DoS) via a crafted request. High Unreviewed
CVE-2024-48080 was published Dec 3, 2024
rizin before Release v0.6.3 is vulnerable to Uncontrolled Resource Consumption via... High Unreviewed
CVE-2024-31669 was published Dec 2, 2024
An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows... High Unreviewed
CVE-2024-48530 was published Nov 20, 2024
Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the... High Unreviewed
CVE-2021-1285 was published Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (memory... High Unreviewed
CVE-2024-52915 was published Nov 18, 2024
Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash)... High Unreviewed
CVE-2019-25220 was published Nov 18, 2024
Bitcoin Core before 0.15.0 allows a denial of service (OOM kill of a daemon process) via a flood... High Unreviewed
CVE-2024-52916 was published Nov 18, 2024
In Bitcoin Core before 0.18.0, a node could be stalled for hours when processing the orphans of a... High Unreviewed
CVE-2024-52914 was published Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (infinite loop)... High Unreviewed
CVE-2024-52920 was published Nov 18, 2024
In lunary-ai/lunary version 1.2.7, there is a lack of rate limiting on the forgot password page,... High Unreviewed
CVE-2024-3760 was published Nov 14, 2024
A vulnerability in the PROFINET stack implementation of the IndraDrive (all versions) of Bosch... High Unreviewed
CVE-2024-48989 was published Nov 13, 2024
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service (DoS) via a... High Unreviewed
CVE-2024-51428 was published Nov 7, 2024
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a... High Unreviewed
CVE-2024-48809 was published Nov 4, 2024
This vulnerability exists in the Wave 2.0 due to missing rate limiting on OTP requests in an API... High Unreviewed
CVE-2024-51557 was published Nov 4, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed
CVE-2024-7807 was published Oct 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database