GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
833 advisories
Filter by severity
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation...
Moderate
Unreviewed
CVE-2024-31152
was published
Oct 30, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ...
High
Unreviewed
CVE-2024-7807
was published
Oct 29, 2024
Potential race conditions in IndexedDB could have caused memory corruption, leading to a...
Critical
Unreviewed
CVE-2024-10468
was published
Oct 29, 2024
Mattermost Server vulnerable to application crash from attacker-generated large response
Moderate
CVE-2024-47401
was published
for
github.com/mattermost/mattermost/server/v8
(Go)
Oct 29, 2024
Spring Security vulnerable to Authorization Bypass of Static Resources in WebFlux Applications
Critical
CVE-2024-38821
was published
for
org.springframework.security:spring-security-web
(Maven)
Oct 28, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4...
Moderate
Unreviewed
CVE-2024-6826
was published
Oct 24, 2024
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow...
Moderate
Unreviewed
CVE-2024-20526
was published
Oct 23, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2024-31880
was published
Oct 23, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to...
Moderate
Unreviewed
CVE-2024-50311
was published
Oct 22, 2024
Security Update for the OPC UA .NET Standard Stack
Moderate
CVE-2024-45526
was published
for
OPCFoundation.NetStandard.Opc.Ua
(NuGet)
Oct 18, 2024
Security Update for the OPC UA .NET Standard Stack
High
GHSA-qm9f-c3v9-wphv
was published
for
OPCFoundation.NetStandard.Opc.Ua
(NuGet)
Oct 18, 2024
Possible ReDoS vulnerability in query parameter filtering in Action Dispatch
Moderate
CVE-2024-41128
was published
for
actionpack
(RubyGems)
Oct 15, 2024
Starlette Denial of service (DoS) via multipart/form-data
High
CVE-2024-47874
was published
for
starlette
(pip)
Oct 15, 2024
Eclipse Jetty's ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks
Moderate
CVE-2024-8184
was published
for
org.eclipse.jetty:jetty-server
(Maven)
Oct 14, 2024
Eclipse Jetty's PushSessionCacheFilter can cause remote DoS attacks
Low
CVE-2024-6762
was published
for
org.eclipse.jetty:jetty-servlets
(Maven)
Oct 14, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management...
High
Unreviewed
CVE-2024-47508
was published
Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management...
High
Unreviewed
CVE-2024-47509
was published
Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management...
High
Unreviewed
CVE-2024-47505
was published
Oct 11, 2024
An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper...
High
Unreviewed
CVE-2024-47502
was published
Oct 11, 2024
Bitcoin Core before 25.0 allows remote attackers to cause a denial of service (blocktxn message...
High
Unreviewed
CVE-2024-35202
was published
Oct 10, 2024
Windows Hyper-V Denial of Service Vulnerability
High
Unreviewed
CVE-2024-43567
was published
Oct 8, 2024
Improper resource management in firmware of some Solidigm DC Products may allow an attacker to...
Moderate
Unreviewed
CVE-2024-47969
was published
Oct 8, 2024
Improper resource initialization handling in firmware of some Solidigm DC Products may allow an...
Critical
Unreviewed
CVE-2024-47967
was published
Oct 7, 2024
async-graphql Directive Overload
High
CVE-2024-47614
was published
for
async-graphql
(Rust)
Oct 3, 2024
A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS)...
High
Unreviewed
CVE-2024-44459
was published
Sep 12, 2024
ProTip!
Advisories are also available from the
GraphQL API