GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
28 advisories
Filter by severity
A denial-of-service vulnerability could allow an authenticated user to trigger an internal...
Low
Unreviewed
CVE-2022-4003
was published
Jul 31, 2024
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled...
Low
Unreviewed
CVE-2024-6501
was published
Jul 9, 2024
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any...
Low
Unreviewed
CVE-2024-6126
was published
Jul 3, 2024
DoS in KAS in GitLab CE/EE affecting all versions from 16.10.0 prior to 16.10.6 and 16.11.0 prior...
Low
Unreviewed
CVE-2024-5469
was published
Jun 14, 2024
Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial...
Low
Unreviewed
CVE-2024-3872
was published
Apr 16, 2024
Uncontrolled Resource Consumption in Mattermost Mobile versions before 2.13.0 fails to limit the...
Low
Unreviewed
CVE-2024-24975
was published
Mar 15, 2024
nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial...
Low
Unreviewed
CVE-2024-28214
was published
Mar 7, 2024
SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform...
Low
Unreviewed
CVE-2023-49578
was published
Dec 12, 2023
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background...
Low
Unreviewed
CVE-2023-5870
was published
Dec 10, 2023
Mattermost fails to properly validate a RegExp built off the server URL path, allowing an...
Low
Unreviewed
CVE-2023-5876
was published
Nov 2, 2023
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this...
Low
Unreviewed
CVE-2023-41310
was published
Sep 27, 2023
Mattermost fails to properly validate a gif image file, allowing an attacker to consume a...
Low
Unreviewed
CVE-2023-3614
was published
Jul 17, 2023
A vulnerability has been found in OmniSharp csharp-language-server-protocol up to 0.19.6 and...
Low
Unreviewed
CVE-2022-4952
was published
Jul 17, 2023
SAP NetWeaver (Change and Transport System) - versions 702, 731, 740, 750, 751, 752, 753, 754,...
Low
Unreviewed
CVE-2023-32114
was published
Jun 13, 2023
Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing...
Low
Unreviewed
CVE-2022-33747
was published
Oct 11, 2022
Trend Micro Antivirus for Mac 2021 (Consumer) is vulnerable to a memory exhaustion vulnerability...
Low
Unreviewed
CVE-2021-25227
was published
May 24, 2022
A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python...
Low
Unreviewed
CVE-2021-3737
was published
May 24, 2022
There is a resource management errors vulnerability in Huawei P30. Local attackers construct...
Low
Unreviewed
CVE-2020-9203
was published
May 24, 2022
A vulnerability in the local management (local-mgmt) CLI of Cisco UCS Manager Software could...
Low
Unreviewed
CVE-2020-3504
was published
May 24, 2022
An issue was discovered in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel...
Low
Unreviewed
CVE-2020-12655
was published
May 24, 2022
A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd)...
Low
Unreviewed
CVE-2020-10717
was published
May 24, 2022
ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is...
Low
Unreviewed
CVE-2020-6867
was published
May 24, 2022
NVIDIA vGPU graphics driver for guest OS contains a vulnerability in which an incorrect resource...
Low
Unreviewed
CVE-2020-5961
was published
May 24, 2022
kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with...
Low
Unreviewed
CVE-2019-19922
was published
May 24, 2022
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial...
Low
Unreviewed
CVE-2019-13232
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API