GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
37 advisories
Filter by severity
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command...
Critical
Unreviewed
CVE-2024-45163
was published
Aug 22, 2024
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input...
Critical
Unreviewed
CVE-2024-45166
was published
Aug 22, 2024
ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps...
Critical
Unreviewed
CVE-2024-44083
was published
Aug 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
clk: bcm: dvp: Assign ->num...
Critical
Unreviewed
CVE-2024-39462
was published
Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: codecs: wcd938x: fix...
Critical
Unreviewed
CVE-2022-48716
was published
Jun 20, 2024
A denial of service vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior....
Critical
Unreviewed
CVE-2024-4549
was published
May 6, 2024
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in...
Critical
Unreviewed
CVE-2024-23265
was published
Mar 8, 2024
Samly access control vulnerability
Critical
CVE-2024-25718
was published
for
Samly
(Erlang)
Feb 11, 2024
Through the exploitation of active user sessions, an attacker could send custom requests to...
Critical
Unreviewed
CVE-2023-50707
was published
Dec 20, 2023
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability...
Critical
Unreviewed
CVE-2023-41294
was published
Sep 25, 2023
JSONUtil vulnerable to stack exhaustion
Critical
CVE-2023-34615
was published
for
net.pwall.json:jsonutil
(Maven)
Jun 14, 2023
Vulnerability discovered is related to the peer-to-peer (p2p) communications, attackers can craft...
Critical
Unreviewed
CVE-2023-30769
was published
Apr 17, 2023
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5...
Critical
Unreviewed
CVE-2023-28507
was published
Mar 29, 2023
ecnepsnai/web vulnerable to Uncontrolled Resource Consumption
Critical
CVE-2021-4236
was published
for
github.com/ecnepsnai/web
(Go)
Dec 28, 2022
Certain General Electric Renewable Energy products allow attackers to use a code to trigger a...
Critical
Unreviewed
CVE-2022-24118
was published
Dec 26, 2022
Resource allocation error while playing the video whose dimensions are more than supported...
Critical
Unreviewed
CVE-2019-2259
was published
May 24, 2022
Index of array is processed in a wrong way inside a while loop and result in invalid index (-1 or...
Critical
Unreviewed
CVE-2018-11936
was published
May 24, 2022
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a...
Critical
Unreviewed
CVE-2017-9119
was published
May 14, 2022
Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a...
Critical
Unreviewed
CVE-2018-19282
was published
May 14, 2022
The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a...
Critical
Unreviewed
CVE-2017-1000378
was published
May 13, 2022
In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of...
Critical
Unreviewed
CVE-2019-9750
was published
May 13, 2022
Server-Side Request Forgery and Uncontrolled Resource Consumption in LemMinX
Critical
CVE-2022-0671
was published
for
org.eclipse.lemminx:lemminx-parent
(Maven)
Feb 19, 2022
StarWind iSCSI SAN before 6.0 build 2013-03-20 allows a memory leak.
Critical
Unreviewed
CVE-2013-20004
was published
Feb 12, 2022
Security Advisory for "Log4Shell"
Critical
GHSA-v57x-gxfj-484q
was published
for
com.hazelcast.jet:hazelcast-jet
(Maven)
Jan 21, 2022
There is an Uncontrolled resource consumption vulnerability in the display module in smartphones....
Critical
Unreviewed
CVE-2021-40011
was published
Jan 11, 2022
ProTip!
Advisories are also available from the
GraphQL API