Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in... High Unreviewed
CVE-2019-5097 was published May 24, 2022
The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a... Moderate Unreviewed
CVE-2015-5278 was published May 24, 2022
In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8... Low Unreviewed
CVE-2019-12068 was published May 24, 2022
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop. Moderate Unreviewed
CVE-2023-30300 was published May 3, 2023
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via... High Unreviewed
CVE-2023-2879 was published May 26, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of... Moderate Unreviewed
CVE-2023-2952 was published May 31, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0... Moderate Unreviewed
CVE-2023-33305 was published Jun 13, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which... Moderate Unreviewed
CVE-2021-33294 was published Jul 18, 2023
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at... Moderate Unreviewed
CVE-2023-37748 was published Jul 19, 2023
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are... High Unreviewed
CVE-2023-3748 was published Jul 24, 2023
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The... Moderate Unreviewed
CVE-2023-4010 was published Jul 31, 2023
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local... Moderate Unreviewed
CVE-2020-24221 was published Aug 11, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause... Moderate Unreviewed
CVE-2020-36023 was published Aug 11, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote... High Unreviewed
CVE-2023-30188 was published Aug 14, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to... Moderate Unreviewed
CVE-2022-40090 was published Aug 22, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42524 was published Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42525 was published Sep 18, 2023
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure... High Unreviewed
CVE-2023-43761 was published Sep 22, 2023
A denial of service vulnerability exists in the DCRegister DDNS_RPC_MAX_RECV_SIZE functionality... Moderate Unreviewed
CVE-2023-22325 was published Oct 12, 2023
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper... High Unreviewed
CVE-2023-44181 was published Oct 13, 2023
libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be... High Unreviewed
CVE-2022-27781 was published Jun 3, 2022
Ryu Infinite Loop vulnerability High
CVE-2024-28732 was published for ryu (pip) Apr 8, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Stop relying on... Moderate Unreviewed
CVE-2024-26603 was published Feb 26, 2024
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6... High Unreviewed
CVE-2023-38197 was published Jul 13, 2023
aiohttp vulnerable to Denial of Service when trying to parse malformed POST requests High
CVE-2024-30251 was published for aiohttp (pip) May 3, 2024
bytehope
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database