GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
272 advisories
Filter by severity
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)...
High
Unreviewed
CVE-2024-44459
was published
Sep 12, 2024
Possible NLDAP Denial of Service attack Vulnerability
in eDirectory has been discovered in...
High
Unreviewed
CVE-2021-22532
was published
Sep 12, 2024
An adversary could cause a continuous restart loop to the entire device by sending a large...
High
Unreviewed
CVE-2023-40710
was published
Aug 24, 2023
An adversary could crash the entire device by sending a large quantity of ICMP requests if the...
High
Unreviewed
CVE-2023-40709
was published
Aug 24, 2023
Very large headers can cause resource exhaustion when parsing message. The message-parser...
High
Unreviewed
CVE-2024-23185
was published
Sep 10, 2024
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4...
High
Unreviewed
CVE-2023-0383
was published
Apr 20, 2023
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)...
High
Unreviewed
CVE-2024-41727
was published
Aug 14, 2024
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5...
High
Unreviewed
CVE-2024-26461
was published
Feb 29, 2024
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system...
High
Unreviewed
CVE-2024-7113
was published
Aug 13, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system...
High
Unreviewed
CVE-2024-36462
was published
Aug 12, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub...
High
Unreviewed
CVE-2024-6598
was published
Jul 9, 2024
VSeeFace through 1.13.38.c2 allows attackers to cause a denial of service (application hang) via...
High
Unreviewed
CVE-2024-26577
was published
Mar 27, 2024
An issue was discovered in Couchbase Server 6.6.x through 7.2.0, before 7.1.5 and 7.2.1....
High
Unreviewed
CVE-2023-43768
was published
Mar 27, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ...
High
Unreviewed
CVE-2024-1975
was published
Jul 23, 2024
A malicious client can send many DNS messages over TCP, potentially causing the server to become...
High
Unreviewed
CVE-2024-0760
was published
Jul 23, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the...
High
Unreviewed
CVE-2024-1737
was published
Jul 23, 2024
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to...
High
Unreviewed
CVE-2024-27316
was published
Apr 4, 2024
A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR...
High
Unreviewed
CVE-2020-3566
was published
May 24, 2022
Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of...
High
Unreviewed
CVE-2020-3569
was published
May 24, 2022
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An...
High
Unreviewed
CVE-2024-6427
was published
Jul 3, 2024
is_closing_session() allows users to create arbitrary tcp dbus connections
High
Unreviewed
CVE-2022-28655
was published
Jun 5, 2024
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 ...
High
Unreviewed
CVE-2022-43768
was published
Apr 11, 2023
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard...
High
Unreviewed
CVE-2020-28400
was published
May 24, 2022
An excessive memory use issue (CWE-770) exists in Email-MIME, before version 1.954, which can...
High
Unreviewed
CVE-2024-4140
was published
May 2, 2024
Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers...
High
Unreviewed
CVE-2023-50387
was published
Feb 14, 2024
ProTip!
Advisories are also available from the
GraphQL API