GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
561 advisories
Filter by severity
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.2 before 16...
Moderate
Unreviewed
CVE-2023-5825
was published
Nov 6, 2023
A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco...
High
Unreviewed
CVE-2023-20083
was published
Nov 1, 2023
Improper file stream access in /desktop_app/file.ajax.php?action=uploadfile in Bitrix24 22.0.300...
High
Unreviewed
CVE-2023-1718
was published
Nov 1, 2023
Possible Infinite Loop when PdfWriter(clone_from) is used with a PDF
Moderate
CVE-2023-46250
was published
for
pypdf
(pip)
Oct 31, 2023
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper...
High
Unreviewed
CVE-2023-44181
was published
Oct 13, 2023
A denial of service vulnerability exists in the DCRegister DDNS_RPC_MAX_RECV_SIZE functionality...
Moderate
Unreviewed
CVE-2023-22325
was published
Oct 12, 2023
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function....
Moderate
Unreviewed
CVE-2023-43786
was published
Oct 10, 2023
MediaWiki Denial of Service vulnerability
High
CVE-2023-45363
was published
for
mediawiki/core
(Composer)
Oct 9, 2023
asyncua vulnerable to denial of service via infinite loop
High
CVE-2023-26151
was published
for
asyncua
(pip)
Oct 3, 2023
OpenFGA Vulnerable to DoS from circular relationship definitions
Moderate
CVE-2023-43645
was published
for
github.com/openfga/openfga
(Go)
Sep 28, 2023
x/net/html Vulnerable to DoS During HTML Parsing
High
CVE-2018-17846
was published
for
golang.org/x/net
(Go)
Sep 25, 2023
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure...
High
Unreviewed
CVE-2023-43761
was published
Sep 22, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42524
was published
Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file...
High
Unreviewed
CVE-2023-42525
was published
Sep 18, 2023
Undertow denial of service vulnerability
High
CVE-2023-1108
was published
for
io.undertow:undertow-core
(Maven)
Sep 14, 2023
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong...
Moderate
Unreviewed
CVE-2023-3255
was published
Sep 13, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua...
High
Unreviewed
CVE-2023-4540
was published
Sep 5, 2023
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of...
High
Unreviewed
CVE-2023-4511
was published
Aug 24, 2023
A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software...
Moderate
Unreviewed
CVE-2023-20200
was published
Aug 23, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to...
Moderate
Unreviewed
CVE-2022-40090
was published
Aug 22, 2023
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV...
High
Unreviewed
CVE-2023-20197
was published
Aug 17, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote...
High
Unreviewed
CVE-2023-30188
was published
Aug 14, 2023
FaucetSDN Ryu Denial of Service Vulnerability
High
CVE-2020-35139
was published
for
ryu
(pip)
Aug 11, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36023
was published
Aug 11, 2023
FaucetSDN Ryu Denial of Service Vulnerability
High
CVE-2020-35141
was published
for
ryu
(pip)
Aug 11, 2023
ProTip!
Advisories are also available from the
GraphQL API