Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,783
Erlang
36
GitHub Actions
29
Go
2,347
Maven
5,000+
npm
3,976
NuGet
720
pip
3,774
Pub
12
RubyGems
923
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,251 advisories

Loading
Node Denial of Service via kubelet Checkpoint API Moderate
CVE-2025-0426 was published for k8s.io/kubernetes (Go) Feb 13, 2025
Internet Connection Sharing (ICS) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21352 was published Feb 11, 2025
A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3... Moderate Unreviewed
CVE-2024-23814 was published Feb 11, 2025
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS... Moderate Unreviewed
CVE-2024-54658 was published Feb 10, 2025
Denial of Service attack on windows app using Netty Moderate
CVE-2025-25193 was published for io.netty:netty-common (Maven) Feb 10, 2025
chrisvest navzen2000
henrikplate JensBoening1337 jfposton
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio nevans
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57673 was published Feb 6, 2025
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57672 was published Feb 6, 2025
A vulnerability, which was classified as problematic, was found in JoeyBling bootplus up to... Moderate Unreviewed
CVE-2025-0704 was published Jan 24, 2025
Apache Wicket: An attacker can intentionally trigger a memory leak Moderate
CVE-2024-53299 was published for org.apache.wicket:wicket-core (Maven) Jan 23, 2025
raboof
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2024-57724 was published Jan 23, 2025
In build_read_multi_rsp of gatt_sr.cc, there is a possible denial of service due to a logic error... Moderate Unreviewed
CVE-2024-43763 was published Jan 22, 2025
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). ... Moderate Unreviewed
CVE-2025-21548 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema)... Moderate Unreviewed
CVE-2025-21529 was published Jan 21, 2025
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
In onCreate of EmergencyCallbackModeExitDialog.java, there is a possible way to crash the... Moderate Unreviewed
CVE-2018-9447 was published Jan 18, 2025
Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource... Moderate Unreviewed
CVE-2024-47239 was published Jan 8, 2025
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP... Moderate Unreviewed
CVE-2022-27600 was published Dec 19, 2024
An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability ... Moderate Unreviewed
CVE-2024-12698 was published Dec 18, 2024
Apache Tomcat Uncontrolled Resource Consumption vulnerability Moderate
CVE-2024-54677 was published for org.apache.tomcat:tomcat-catalina (Maven) Dec 17, 2024
The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all... Moderate Unreviewed
CVE-2024-12601 was published Dec 17, 2024
The Minify HTML plugin for WordPress is vulnerable to Regular Expression Denial of Service (ReDoS... Moderate Unreviewed
CVE-2024-12579 was published Dec 13, 2024
Dell PowerScale OneFS Versions 9.5.0.x through 9.8.0.x contain an uncontrolled resource... Moderate Unreviewed
CVE-2024-42426 was published Dec 9, 2024
Withdrawn Advisory: Netty vulnerability included in redis lettuce Moderate
GHSA-q4h9-7rxj-7gx2 was published for io.lettuce:lettuce-core (Maven) Dec 2, 2024 withdrawn
gmcallister-r7 SteffenGabel
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL... Moderate Unreviewed
CVE-2024-11498 was published Nov 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database