GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,230 advisories
Filter by severity
Processing an incomplete post-handshake message for a QUIC connection can cause a panic.
High
Unreviewed
CVE-2023-39321
was published
Sep 8, 2023
Shenzhen Hichip Vision Technology IP Camera Firmware V11.4.8.1.1-20170926 has a denial of service...
High
Unreviewed
CVE-2022-23382
was published
Sep 11, 2023
An issue was discovered in Qubo Smart Plug 10A version HSP02_01_01_14_SYSTEM-10A, allows...
High
Unreviewed
CVE-2023-36161
was published
Sep 11, 2023
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an...
High
Unreviewed
CVE-2024-37125
was published
Sep 26, 2024
Inefficient Regular Expression Complexity in nltk (word_tokenize, sent_tokenize)
High
CVE-2021-43854
was published
for
nltk
(pip)
Jan 6, 2022
When multiple devices share resources and one of them is to be passed
through to a guest,...
High
Unreviewed
CVE-2024-31146
was published
Sep 25, 2024
Certain PCI devices in a system might be assigned Reserved Memory
Regions (specified via Reserved...
High
Unreviewed
CVE-2024-31145
was published
Sep 25, 2024
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This...
High
Unreviewed
CVE-2023-43767
was published
Sep 22, 2023
Denial of service attack via incorrect parameters in Matrix Synapse
High
CVE-2020-26257
was published
for
matrix-synapse
(pip)
Dec 9, 2020
python-multipart vulnerable to Content-Type Header ReDoS
High
CVE-2024-24762
was published
for
python-multipart
(pip)
Feb 12, 2024
Sydent vulnerable to denial of service attack via memory exhaustion
High
CVE-2021-29430
was published
for
matrix-sydent
(pip)
Apr 19, 2021
Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role)...
High
Unreviewed
CVE-2024-47210
was published
Sep 22, 2024
Regular Expression Denial of Service (REDoS) in httplib2
High
CVE-2021-21240
was published
for
httplib2
(pip)
Feb 8, 2021
Uncontrolled Resource Consumption in Indy Node
High
CVE-2020-11090
was published
for
indy-node
(pip)
Jun 11, 2020
Pallets Project Flask is vulnerable to Denial of Service via Unexpected memory usage
High
CVE-2019-1010083
was published
for
flask
(pip)
Jul 19, 2019
Regular Expression Denial of Service in flask-restx
High
CVE-2021-32838
was published
for
flask-restx
(pip)
Sep 8, 2021
Django Denial-of-service in strip_tags()
High
CVE-2019-14233
was published
for
Django
(pip)
Aug 6, 2019
Django Denial-of-service in django.utils.text.Truncator
High
CVE-2019-14232
was published
for
Django
(pip)
Aug 6, 2019
Django potential denial of service vulnerability in UsernameField on Windows
High
CVE-2023-46695
was published
for
Django
(pip)
Nov 2, 2023
Django contains Uncontrolled Resource Consumption via cached header
High
CVE-2023-23969
was published
for
django
(pip)
Feb 1, 2023
Uncontrolled resource consumption in Zoom SDKs before 5.14.7 may allow an unauthenticated user to...
High
Unreviewed
CVE-2023-36533
was published
Aug 8, 2023
ProTip!
Advisories are also available from the
GraphQL API