Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

563 advisories

Loading
Predictable results in nanoid generation when given non-integer values Moderate
CVE-2024-55565 was published for nanoid (npm) Dec 9, 2024
krassowski katzj
CrzyHAX91
Drupal core Denial of Service High
CVE-2024-11941 was published for drupal/core (Composer) Dec 5, 2024
7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote... Moderate Unreviewed
CVE-2024-11612 was published Nov 22, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix 6... Moderate Unreviewed
CVE-2024-53055 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: filemap: Fix bounds checking... Moderate Unreviewed
CVE-2024-50272 was published Nov 19, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed
CVE-2024-50321 was published Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed
CVE-2024-50319 was published Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed
CVE-2024-50320 was published Nov 12, 2024
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and... Moderate Unreviewed
CVE-2024-11097 was published Nov 12, 2024
GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of... High Unreviewed
CVE-2024-52532 was published Nov 11, 2024
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR... Low Unreviewed
CVE-2024-33623 was published Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel... Moderate Unreviewed
CVE-2024-50011 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Fix deadlock in SGX... Moderate Unreviewed
CVE-2024-49856 was published Oct 21, 2024
Infinite loop in github.com/gomarkdown/markdown Moderate
CVE-2024-44337 was published for github.com/gomarkdown/markdown (Go) Oct 15, 2024
Windows Standards-Based Storage Management Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-43512 was published Oct 8, 2024
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite... Moderate Unreviewed
CVE-2024-46701 was published Sep 13, 2024
Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP... High Unreviewed
CVE-2024-45692 was published Sep 5, 2024
sigstore-go has an unbounded loop over untrusted input can lead to endless data attack Low
CVE-2024-45395 was published for github.com/sigstore/sigstore-go (Go) Sep 4, 2024
AdamKorcz codysoyland
There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When... High Unreviewed
CVE-2024-8088 was published Aug 22, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when... Moderate Unreviewed
CVE-2024-43828 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in... Moderate Unreviewed
CVE-2024-42246 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in ... Moderate Unreviewed
CVE-2024-42240 was published Aug 7, 2024
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. High Unreviewed
CVE-2024-23352 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: fix infinite... Moderate Unreviewed
CVE-2024-41088 was published Jul 29, 2024
go-chart v2.1.1 was discovered to contain an infinite loop via the drawCanvas() function. High Unreviewed
CVE-2024-40060 was published Jul 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database