Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,866
Erlang
36
GitHub Actions
36
Go
2,491
Maven
5,000+
npm
4,110
NuGet
735
pip
3,933
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

217 advisories

Loading
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that... High Unreviewed
CVE-2024-1931 was published Mar 7, 2024
Certain WithSecure products allow a Denial of Service because the engine scanner can go into an... High Unreviewed
CVE-2024-27359 was published Feb 26, 2024
An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume... High Unreviewed
CVE-2023-51890 was published Jan 24, 2024
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option... High Unreviewed
CVE-2023-45233 was published Jan 16, 2024
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown... High Unreviewed
CVE-2023-45232 was published Jan 16, 2024
DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or... High Unreviewed
CVE-2024-0211 was published Jan 3, 2024
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that... High Unreviewed
CVE-2023-43511 was published Jan 2, 2024
ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of... High Unreviewed
CVE-2023-50981 was published Dec 27, 2023
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Sierra Wireless, Inc... High Unreviewed
CVE-2023-40458 was published Nov 30, 2023
A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco... High Unreviewed
CVE-2023-20083 was published Nov 1, 2023
Improper file stream access in /desktop_app/file.ajax.php?action=uploadfile in Bitrix24 22.0.300... High Unreviewed
CVE-2023-1718 was published Nov 1, 2023
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper... High Unreviewed
CVE-2023-44181 was published Oct 13, 2023
Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure... High Unreviewed
CVE-2023-43761 was published Sep 22, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42525 was published Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42524 was published Sep 18, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed
CVE-2023-4540 was published Sep 5, 2023
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of... High Unreviewed
CVE-2023-4511 was published Aug 24, 2023
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV... High Unreviewed
CVE-2023-20197 was published Aug 17, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote... High Unreviewed
CVE-2023-30188 was published Aug 14, 2023
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are... High Unreviewed
CVE-2023-3748 was published Jul 24, 2023
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When... High Unreviewed
CVE-2023-34966 was published Jul 20, 2023
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6... High Unreviewed
CVE-2023-38197 was published Jul 13, 2023
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via... High Unreviewed
CVE-2023-2879 was published May 26, 2023
This vulnerability allows remote attackers to create a denial-of-service condition on affected... High Unreviewed
CVE-2022-37013 was published Mar 29, 2023
Denial of service in modem due to missing null check while processing IP packets with padding High Unreviewed
CVE-2022-25734 was published Feb 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database