GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

301 advisories

Filter by severity

Sort by

Least recently updated

Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 (and before 6.0.13 LTS), and Varnish Enterprise... High Unreviewed

CVE-2024-30156 was published Mar 24, 2024

Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (memory... High Unreviewed

CVE-2024-52915 was published Nov 18, 2024

In Bitcoin Core before 0.18.0, a node could be stalled for hours when processing the orphans of a... High Unreviewed

CVE-2024-52914 was published Nov 18, 2024

Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the... High Unreviewed

CVE-2021-1285 was published Nov 18, 2024

Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash)... High Unreviewed

CVE-2019-25220 was published Nov 18, 2024

Bitcoin Core before 0.15.0 allows a denial of service (OOM kill of a daemon process) via a flood... High Unreviewed

CVE-2024-52916 was published Nov 18, 2024

Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (infinite loop)... High Unreviewed

CVE-2024-52920 was published Nov 18, 2024

In lunary-ai/lunary version 1.2.7, there is a lack of rate limiting on the forgot password page,... High Unreviewed

CVE-2024-3760 was published Nov 14, 2024

A vulnerability in the PROFINET stack implementation of the IndraDrive (all versions) of Bosch... High Unreviewed

CVE-2024-48989 was published Nov 13, 2024

An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service (DoS) via a... High Unreviewed

CVE-2024-51428 was published Nov 7, 2024

This vulnerability exists in the Wave 2.0 due to missing rate limiting on OTP requests in an API... High Unreviewed

CVE-2024-51557 was published Nov 4, 2024

An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a... High Unreviewed

CVE-2024-48809 was published Nov 4, 2024

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to cover... High Unreviewed

CVE-2024-34027 was published Jun 24, 2024

In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory... High Unreviewed

CVE-2021-47137 was published Mar 25, 2024

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI... High Unreviewed

CVE-2024-22255 was published Mar 5, 2024

The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for... High Unreviewed

CVE-2024-34046 was published Apr 30, 2024

On Crestron 3-Series Control Systems before 1.8001.0187, crafting and sending a specific BACnet... High Unreviewed

CVE-2023-38405 was published Jul 17, 2023

A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed

CVE-2024-7807 was published Oct 29, 2024

To keep its cache database efficient, `named` running as a recursive resolver occasionally... High Unreviewed

CVE-2023-6516 was published Feb 13, 2024

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed

CVE-2024-47508 was published Oct 11, 2024

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed

CVE-2024-47509 was published Oct 11, 2024

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management... High Unreviewed

CVE-2024-47505 was published Oct 11, 2024

An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper... High Unreviewed

CVE-2024-47502 was published Oct 11, 2024

Bitcoin Core before 25.0 allows remote attackers to cause a denial of service (blocktxn message... High Unreviewed

CVE-2024-35202 was published Oct 10, 2024

A lack of rate limiting in pjActionAJaxSend in Availability Booking Calendar 5.0 allows attackers... High Unreviewed

CVE-2023-48831 was published Dec 7, 2023

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301 advisories