GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
29 advisories
Filter by severity
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled...
Low
Unreviewed
CVE-2024-6501
was published
Jul 9, 2024
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any...
Low
Unreviewed
CVE-2024-6126
was published
Jul 3, 2024
nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial...
Low
Unreviewed
CVE-2024-28214
was published
Mar 7, 2024
SAP NetWeaver (Change and Transport System) - versions 702, 731, 740, 750, 751, 752, 753, 754,...
Low
Unreviewed
CVE-2023-32114
was published
Jun 13, 2023
SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform...
Low
Unreviewed
CVE-2023-49578
was published
Dec 12, 2023
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background...
Low
Unreviewed
CVE-2023-5870
was published
Dec 10, 2023
DoS in KAS in GitLab CE/EE affecting all versions from 16.10.0 prior to 16.10.6 and 16.11.0 prior...
Low
Unreviewed
CVE-2024-5469
was published
Jun 14, 2024
A denial-of-service vulnerability could allow an authenticated user to trigger an internal...
Low
Unreviewed
CVE-2022-4003
was published
Jul 31, 2024
Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial...
Low
Unreviewed
CVE-2024-3872
was published
Apr 16, 2024
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this...
Low
Unreviewed
CVE-2023-41310
was published
Sep 27, 2023
Mattermost fails to properly validate a gif image file, allowing an attacker to consume a...
Low
Unreviewed
CVE-2023-3614
was published
Jul 17, 2023
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial...
Low
Unreviewed
CVE-2019-13232
was published
May 24, 2022
Uncontrolled Resource Consumption in Mattermost Mobile versions before 2.13.0 fails to limit the...
Low
Unreviewed
CVE-2024-24975
was published
Mar 15, 2024
Resource Exhaustion in Mattermost Server versions 8.1.x before 8.1.10 fails to limit the size of...
Low
Unreviewed
CVE-2024-28053
was published
Mar 15, 2024
Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing...
Low
Unreviewed
CVE-2022-33747
was published
Oct 11, 2022
Mattermost fails to properly validate a RegExp built off the server URL path, allowing an...
Low
Unreviewed
CVE-2023-5876
was published
Nov 2, 2023
A vulnerability has been found in OmniSharp csharp-language-server-protocol up to 0.19.6 and...
Low
Unreviewed
CVE-2022-4952
was published
Jul 17, 2023
A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python...
Low
Unreviewed
CVE-2021-3737
was published
May 24, 2022
A vulnerability in the local management (local-mgmt) CLI of Cisco UCS Manager Software could...
Low
Unreviewed
CVE-2020-3504
was published
May 24, 2022
The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without...
Low
Unreviewed
CVE-2011-5056
was published
May 13, 2022
Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a...
Low
Unreviewed
CVE-2002-1876
was published
Apr 30, 2022
Trend Micro Antivirus for Mac 2021 (Consumer) is vulnerable to a memory exhaustion vulnerability...
Low
Unreviewed
CVE-2021-25227
was published
May 24, 2022
Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a...
Low
Unreviewed
CVE-2001-0666
was published
Apr 30, 2022
kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with...
Low
Unreviewed
CVE-2019-19922
was published
May 24, 2022
There is a resource management errors vulnerability in Huawei P30. Local attackers construct...
Low
Unreviewed
CVE-2020-9203
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API