GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
563 advisories
Filter by severity
Predictable results in nanoid generation when given non-integer values
Moderate
CVE-2024-55565
was published
for
nanoid
(npm)
Dec 9, 2024
Drupal core Denial of Service
High
CVE-2024-11941
was published
for
drupal/core
(Composer)
Dec 5, 2024
7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote...
Moderate
Unreviewed
CVE-2024-11612
was published
Nov 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: fix 6...
Moderate
Unreviewed
CVE-2024-53055
was published
Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
filemap: Fix bounds checking...
Moderate
Unreviewed
CVE-2024-50272
was published
Nov 19, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50321
was published
Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50319
was published
Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50320
was published
Nov 12, 2024
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-11097
was published
Nov 12, 2024
GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of...
High
Unreviewed
CVE-2024-52532
was published
Nov 11, 2024
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR...
Low
Unreviewed
CVE-2024-33623
was published
Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: soc-acpi-intel...
Moderate
Unreviewed
CVE-2024-50011
was published
Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/sgx: Fix deadlock in SGX...
Moderate
Unreviewed
CVE-2024-49856
was published
Oct 21, 2024
Infinite loop in github.com/gomarkdown/markdown
Moderate
CVE-2024-44337
was published
for
github.com/gomarkdown/markdown
(Go)
Oct 15, 2024
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-43512
was published
Oct 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
libfs: fix infinite...
Moderate
Unreviewed
CVE-2024-46701
was published
Sep 13, 2024
Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP...
High
Unreviewed
CVE-2024-45692
was published
Sep 5, 2024
sigstore-go has an unbounded loop over untrusted input can lead to endless data attack
Low
CVE-2024-45395
was published
for
github.com/sigstore/sigstore-go
(Go)
Sep 4, 2024
There is a HIGH severity vulnerability affecting the CPython "zipfile"
module.
When...
High
Unreviewed
CVE-2024-8088
was published
Aug 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix infinite loop when...
Moderate
Unreviewed
CVE-2024-43828
was published
Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved:
net, sunrpc: Remap EPERM in...
Moderate
Unreviewed
CVE-2024-42246
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/bhi: Avoid warning in ...
Moderate
Unreviewed
CVE-2024-42240
was published
Aug 7, 2024
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
High
Unreviewed
CVE-2024-23352
was published
Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
can: mcp251xfd: fix infinite...
Moderate
Unreviewed
CVE-2024-41088
was published
Jul 29, 2024
go-chart v2.1.1 was discovered to contain an infinite loop via the drawCanvas() function.
High
Unreviewed
CVE-2024-40060
was published
Jul 23, 2024
ProTip!
Advisories are also available from the
GraphQL API