GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,974
Erlang
29
GitHub Actions
16
Go
1,763
Maven
4,988
npm
3,525
NuGet
615
pip
3,099
Pub
10
RubyGems
834
Rust
785
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
189 advisories
Filter by severity
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that...
High
Unreviewed
CVE-2024-1931
was published
Mar 7, 2024
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When...
High
Unreviewed
CVE-2023-34966
was published
Jul 20, 2023
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and...
High
Unreviewed
CVE-2019-3900
was published
May 24, 2022
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6...
High
Unreviewed
CVE-2023-38197
was published
Jul 13, 2023
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)...
High
Unreviewed
CVE-2024-20353
was published
Apr 24, 2024
libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be...
High
Unreviewed
CVE-2022-27781
was published
Jun 3, 2022
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper...
High
Unreviewed
CVE-2023-44181
was published
Oct 13, 2023
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure...
High
Unreviewed
CVE-2023-43761
was published
Sep 22, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42525
was published
Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42524
was published
Sep 18, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote...
High
Unreviewed
CVE-2023-30188
was published
Aug 14, 2023
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are...
High
Unreviewed
CVE-2023-3748
was published
Jul 24, 2023
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via...
High
Unreviewed
CVE-2023-2879
was published
May 26, 2023
A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in...
High
Unreviewed
CVE-2019-5097
was published
May 24, 2022
ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated denial-of-service...
High
Unreviewed
CVE-2019-18217
was published
May 24, 2022
** DISPUTED ** Trustwave ModSecurity 3.x through 3.0.4 allows denial of service via a special...
High
Unreviewed
CVE-2020-15598
was published
May 24, 2022
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy.
High
Unreviewed
CVE-2019-25040
was published
May 24, 2022
** DISPUTED ** The deserialize function in serialize-to-js through 1.1.1 allows attackers to...
High
Unreviewed
CVE-2017-15871
was published
May 13, 2022
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown...
High
Unreviewed
CVE-2023-45232
was published
Jan 16, 2024
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN...
High
Unreviewed
CVE-2023-45233
was published
Jan 16, 2024
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of...
High
Unreviewed
CVE-2023-4511
was published
Aug 24, 2023
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All...
High
Unreviewed
CVE-2021-25663
was published
May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All...
High
Unreviewed
CVE-2021-25664
was published
May 24, 2022
An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume...
High
Unreviewed
CVE-2023-51890
was published
Jan 24, 2024
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application...
High
Unreviewed
CVE-2023-20020
was published
Jan 20, 2023
ProTip!
Advisories are also available from the
GraphQL API