GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
272 advisories
Filter by severity
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)...
High
Unreviewed
CVE-2024-44459
was published
Sep 12, 2024
Possible NLDAP Denial of Service attack Vulnerability
in eDirectory has been discovered in...
High
Unreviewed
CVE-2021-22532
was published
Sep 12, 2024
Very large headers can cause resource exhaustion when parsing message. The message-parser...
High
Unreviewed
CVE-2024-23185
was published
Sep 10, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)...
High
Unreviewed
CVE-2024-41727
was published
Aug 14, 2024
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system...
High
Unreviewed
CVE-2024-7113
was published
Aug 13, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system...
High
Unreviewed
CVE-2024-36462
was published
Aug 12, 2024
A malicious client can send many DNS messages over TCP, potentially causing the server to become...
High
Unreviewed
CVE-2024-0760
was published
Jul 23, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ...
High
Unreviewed
CVE-2024-1975
was published
Jul 23, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the...
High
Unreviewed
CVE-2024-1737
was published
Jul 23, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub...
High
Unreviewed
CVE-2024-6598
was published
Jul 9, 2024
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An...
High
Unreviewed
CVE-2024-6427
was published
Jul 3, 2024
is_closing_session() allows users to create arbitrary tcp dbus connections
High
Unreviewed
CVE-2022-28655
was published
Jun 5, 2024
An excessive memory use issue (CWE-770) exists in Email-MIME, before version 1.954, which can...
High
Unreviewed
CVE-2024-4140
was published
May 2, 2024
In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar...
High
Unreviewed
CVE-2024-1666
was published
Apr 16, 2024
A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to send a...
High
Unreviewed
CVE-2024-3382
was published
Apr 10, 2024
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to...
High
Unreviewed
CVE-2024-27316
was published
Apr 4, 2024
An issue was discovered in Couchbase Server 6.6.x through 7.2.0, before 7.1.5 and 7.2.1....
High
Unreviewed
CVE-2023-43768
was published
Mar 27, 2024
VSeeFace through 1.13.38.c2 allows attackers to cause a denial of service (application hang) via...
High
Unreviewed
CVE-2024-26577
was published
Mar 27, 2024
Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged...
High
Unreviewed
CVE-2020-11862
was published
Mar 14, 2024
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5...
High
Unreviewed
CVE-2024-26461
was published
Feb 29, 2024
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS...
High
Unreviewed
CVE-2024-20321
was published
Feb 29, 2024
When SSL Client Certificate LDAP or Certificate Revocation List Distribution Point (CRLDP)...
High
Unreviewed
CVE-2024-23979
was published
Feb 14, 2024
Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers...
High
Unreviewed
CVE-2023-50387
was published
Feb 14, 2024
For unspecified traffic patterns, BIG-IP AFM IPS engine may spend an excessive amount of time...
High
Unreviewed
CVE-2024-21771
was published
Feb 14, 2024
In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of...
High
Unreviewed
CVE-2023-52427
was published
Feb 11, 2024
ProTip!
Advisories are also available from the
GraphQL API