GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
517 advisories
Filter by severity
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)...
High
Unreviewed
CVE-2024-44459
was published
Sep 12, 2024
Possible NLDAP Denial of Service attack Vulnerability
in eDirectory has been discovered in...
High
Unreviewed
CVE-2021-22532
was published
Sep 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
nouveau/firmware: use dma...
Moderate
Unreviewed
CVE-2024-45012
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
s390/boot: Avoid possible...
Moderate
Unreviewed
CVE-2024-45014
was published
Sep 11, 2024
Having a large number of address headers (From, To, Cc, Bcc, etc.) becomes excessively CPU...
Moderate
Unreviewed
CVE-2024-23184
was published
Sep 10, 2024
Very large headers can cause resource exhaustion when parsing message. The message-parser...
High
Unreviewed
CVE-2024-23185
was published
Sep 10, 2024
An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation...
Moderate
Unreviewed
CVE-2024-7734
was published
Sep 10, 2024
IBM MQ Operator 2.0.26 and 3.2.4 could allow a local user to cause a denial of service due to...
Moderate
Unreviewed
CVE-2024-40680
was published
Sep 7, 2024
The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local denial-of-service...
Moderate
Unreviewed
CVE-2024-41175
was published
Aug 27, 2024
ida64.dll in Hex-Rays IDA Pro through 8.4 crashes when there is a section that has many jumps...
Critical
Unreviewed
CVE-2024-44083
was published
Aug 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
dma: fix call order in...
Moderate
Unreviewed
CVE-2024-43856
was published
Aug 17, 2024
When performing an online tag generation to devices which communicate
using the ControlLogix...
Moderate
Unreviewed
CVE-2024-6098
was published
Aug 16, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)...
High
Unreviewed
CVE-2024-41727
was published
Aug 14, 2024
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system...
High
Unreviewed
CVE-2024-7113
was published
Aug 13, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: huge_memory: use ...
Moderate
Unreviewed
CVE-2024-42258
was published
Aug 12, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system...
High
Unreviewed
CVE-2024-36462
was published
Aug 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
wireguard: allowedips: avoid...
Moderate
Unreviewed
CVE-2024-42247
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
mmc: sdhci: Fix max_seg_size...
Moderate
Unreviewed
CVE-2024-42242
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm/shmem: disable PMD-sized...
Moderate
Unreviewed
CVE-2024-42241
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
xdp: Remove WARN() from...
Moderate
Unreviewed
CVE-2024-42082
was published
Jul 29, 2024
A malicious client can send many DNS messages over TCP, potentially causing the server to become...
High
Unreviewed
CVE-2024-0760
was published
Jul 23, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ...
High
Unreviewed
CVE-2024-1975
was published
Jul 23, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the...
High
Unreviewed
CVE-2024-1737
was published
Jul 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix overrunning...
Moderate
Unreviewed
CVE-2024-41009
was published
Jul 17, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub...
High
Unreviewed
CVE-2024-6598
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API