Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,467
Erlang
33
GitHub Actions
23
Go
2,172
Maven
5,000+
npm
3,832
NuGet
696
pip
3,508
Pub
12
RubyGems
910
Rust
907
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,051 advisories

Loading
HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface... Moderate Unreviewed
CVE-2023-30903 was published Jun 16, 2023
Mattermost fails to limit the number of role names Moderate
CVE-2024-1953 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 29, 2024
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before... Moderate Unreviewed
CVE-2024-2446 was published Mar 15, 2024
Mattermost Server doesn't limit the number of user preferences Moderate
CVE-2024-28949 was published for github.com/mattermost/mattermost/server/v8 (Go) Apr 5, 2024
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will... High Unreviewed
CVE-2022-48498 was published Jun 19, 2023
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2,... Moderate Unreviewed
CVE-2024-54501 was published Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS... Critical Unreviewed
CVE-2024-44241 was published Dec 12, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6,... Moderate Unreviewed
CVE-2024-9367 was published Dec 12, 2024
Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful... High Unreviewed
CVE-2023-34166 was published Jun 19, 2023
In the Linux kernel, the following vulnerability has been resolved: IB/core: Implement a limit... Moderate Unreviewed
CVE-2024-42145 was published Jul 30, 2024
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard... High Unreviewed
CVE-2020-28400 was published May 24, 2022
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS... High Unreviewed
CVE-2024-27804 was published May 14, 2024
IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that... Moderate Unreviewed
CVE-2023-47717 was published May 16, 2024
An issue in the GDKfree component of MonetDB Server v11.45.17 and v11.46.0 allows attackers to... High Unreviewed
CVE-2023-36371 was published Jun 22, 2023
An issue in the gc_col component of MonetDB Server v11.45.17 and v11.46.0 allows attackers to... High Unreviewed
CVE-2023-36370 was published Jun 22, 2023
An issue in the list_append component of MonetDB Server v11.45.17 and v11.46.0 allows attackers... High Unreviewed
CVE-2023-36369 was published Jun 22, 2023
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch... Moderate Unreviewed
CVE-2023-5625 was published Nov 1, 2023
In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper... Moderate Unreviewed
CVE-2018-9412 was published Nov 20, 2024
rPGP Potential Resource Exhaustion when handling Untrusted Messages High
CVE-2024-53857 was published for pgp (Rust) Dec 5, 2024
invd hko-s
link2xt dignifiedquire
In list_key_entries of utils.rs, there is a possible way to disable user credentials due to... Moderate Unreviewed
CVE-2023-21176 was published Jun 28, 2023
A denial-of-service issue was addressed with improved memory handling. This issue is fixed in iOS... Moderate Unreviewed
CVE-2023-32385 was published Jun 23, 2023
Denial of Service vulnerabilities where found providing a potiential for device service... High Unreviewed
CVE-2024-48844 was published Dec 5, 2024
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the... High Unreviewed
CVE-2024-11316 was published Dec 5, 2024
zlib-rs stack overflow during decompression with malicious input Moderate
GHSA-j3px-q95c-9683 was published for libz-rs-sys (Rust) Nov 14, 2024
inahga
gqlparser denial of service vulnerability via the parserDirectives function Moderate
CVE-2023-49559 was published for github.com/vektah/gqlparser (Go) Jun 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database