GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,572
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,703
NuGet 661
pip 3,329
Pub 11
RubyGems 884
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 234,070

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

202 advisories

Filter by severity

Sort by

Least recently updated

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of... High Unreviewed

CVE-2024-52532 was published Nov 11, 2024

An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed

CVE-2024-50321 was published Nov 12, 2024

An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed

CVE-2024-50319 was published Nov 12, 2024

An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to... High Unreviewed

CVE-2024-50320 was published Nov 12, 2024

Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed

CVE-2023-4540 was published Sep 5, 2023

DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or... High Unreviewed

CVE-2024-0211 was published Jan 3, 2024

Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP... High Unreviewed

CVE-2024-45692 was published Sep 5, 2024

There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When... High Unreviewed

CVE-2024-8088 was published Aug 22, 2024

libyaml v0.2.5 is vulnerable to DDOS. Affected by this issue is the function yaml_parser_parse of... High Unreviewed

CVE-2024-35328 was published Jun 13, 2024

Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache NimBLE. ... High Unreviewed

CVE-2024-24746 was published Apr 6, 2024

Certain WithSecure products allow a Denial of Service because the engine scanner can go into an... High Unreviewed

CVE-2024-27359 was published Feb 26, 2024

Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. High Unreviewed

CVE-2024-23352 was published Aug 5, 2024

An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when... High Unreviewed

CVE-2024-36732 was published Jun 6, 2024

go-chart v2.1.1 was discovered to contain an infinite loop via the drawCanvas() function. High Unreviewed

CVE-2024-40060 was published Jul 23, 2024

NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that... High Unreviewed

CVE-2024-1931 was published Mar 7, 2024

An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When... High Unreviewed

CVE-2023-34966 was published Jul 20, 2023

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and... High Unreviewed

CVE-2019-3900 was published May 24, 2022

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6... High Unreviewed

CVE-2023-38197 was published Jul 13, 2023

A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)... High Unreviewed

CVE-2024-20353 was published Apr 24, 2024

libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be... High Unreviewed

CVE-2022-27781 was published Jun 3, 2022

An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper... High Unreviewed

CVE-2023-44181 was published Oct 13, 2023

Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure... High Unreviewed

CVE-2023-43761 was published Sep 22, 2023

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed

CVE-2023-42524 was published Sep 18, 2023

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed

CVE-2023-42525 was published Sep 18, 2023

Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote... High Unreviewed

CVE-2023-30188 was published Aug 14, 2023

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

202 advisories