Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,230 advisories

Loading
Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability High Unreviewed
CVE-2024-43515 was published Oct 8, 2024
BranchCache Denial of Service Vulnerability High Unreviewed
CVE-2024-38149 was published Oct 8, 2024
BranchCache Denial of Service Vulnerability High Unreviewed
CVE-2024-43506 was published Oct 8, 2024
Pillow Uncontrolled Resource Consumption High
CVE-2021-27922 was published for Pillow (pip) Mar 18, 2021
sunSUNQ
Pillow Denial of Service by Uncontrolled Resource Consumption High
CVE-2021-27921 was published for Pillow (pip) Mar 18, 2021
sunSUNQ
Pillow Denial of Service by Uncontrolled Resource Consumption High
CVE-2021-27923 was published for Pillow (pip) Mar 18, 2021
sunSUNQ
Denial of Service in Onionshare High
CVE-2022-21689 was published for onionshare-cli (pip) Jan 21, 2022
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows... High Unreviewed
CVE-2020-19726 was published Aug 22, 2023
An issue in the component /userRpm/NetworkCfgRpm of TP-Link TL-WR1041N V2 allows attackers to... High Unreviewed
CVE-2023-39748 was published Aug 21, 2023
Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service... High Unreviewed
CVE-2020-20813 was published Aug 22, 2023
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and... High Unreviewed
CVE-2024-47850 was published Oct 4, 2024
An issue was discovered in function nl80211_send_chandef in rtl8812au v5.6.4.2 allows attackers... High Unreviewed
CVE-2020-26652 was published Aug 22, 2023
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of... High Unreviewed
CVE-2022-47696 was published Aug 22, 2023
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of... High Unreviewed
CVE-2022-47695 was published Aug 22, 2023
Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader High
CVE-2024-47554 was published for commons-io:commons-io (Maven) Oct 3, 2024
An issue has been discovered in GitLab EE affecting all versions from 15.11 prior to 16.2.2 which... High Unreviewed
CVE-2023-4011 was published Aug 2, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16... High Unreviewed
CVE-2024-2829 was published Apr 25, 2024
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5,... High Unreviewed
CVE-2023-4647 was published Sep 1, 2023
A denial of service issue was discovered in GitLab CE/EE affecting all versions starting from 13... High Unreviewed
CVE-2023-0121 was published Jun 7, 2023
Array AG OS before 9.4.0.499 allows denial of service: remote attackers can cause system service... High Unreviewed
CVE-2023-41121 was published Aug 26, 2023
AdGuard DNS before 2.2 allows remote attackers to cause a denial of service via malformed UDP... High Unreviewed
CVE-2023-41173 was published Aug 25, 2023
Liferay Portal denial of service (memory consumption) High
CVE-2024-25143 was published for com.liferay.portal:release.portal.bom (Maven) Feb 7, 2024
Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated... High Unreviewed
CVE-2023-1150 was published Jun 26, 2023
Synapse Denial of service due to incorrect application of event authorization rules during state resolution High
CVE-2022-39374 was published for matrix-synapse (pip) May 24, 2023
Apache Log4j 1.x (EOL) allows Denial of Service (DoS) High
CVE-2023-26464 was published for org.apache.logging.log4j:log4j-core (Maven) Mar 10, 2023
jw123023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database