Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,231 advisories

Loading
Uncontrolled Resource Consumption in moodle High
CVE-2024-25978 was published for moodle/moodle (Composer) Feb 19, 2024
Liferay Portal vulnerable to Denial of Service Moderate
CVE-2024-26265 was published for com.liferay.portal:release.portal.bom (Maven) Feb 20, 2024
Denial of service condition in M-Files Server in versions before 24.2 (excluding 23.2 SR7 and 23... Moderate Unreviewed
CVE-2024-0563 was published Feb 23, 2024
Due to an allocation of resources without limits, an uncontrolled resource consumption... Moderate Unreviewed
CVE-2023-51393 was published Feb 23, 2024
IBM Cognos Analytics Mobile Server 11.1.7, 11.2.4, and 12.0.0 is vulnerable to Denial of Service... Moderate Unreviewed
CVE-2022-34357 was published Feb 26, 2024
Connection leaking on idle timeout when TCP congested High
CVE-2024-22201 was published for org.eclipse.jetty.http2:http2-common (Maven) Feb 26, 2024
luffy1949
An issue was discovered in Couchbase Server through 7.2.2. A data reader may cause a denial of... Moderate Unreviewed
CVE-2023-45873 was published Feb 29, 2024
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS... High Unreviewed
CVE-2024-20321 was published Feb 29, 2024
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5... High Unreviewed
CVE-2024-26461 was published Feb 29, 2024
Mattermost fails to limit the number of role names Moderate
CVE-2024-1953 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix... Moderate Unreviewed
CVE-2021-47057 was published Mar 1, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_codec: Fix... Moderate Unreviewed
CVE-2023-52518 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential... Moderate Unreviewed
CVE-2023-52529 was published Mar 3, 2024
VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI... High Unreviewed
CVE-2024-22255 was published Mar 5, 2024
When parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly... Moderate Unreviewed
CVE-2023-45290 was published Mar 6, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/lib: Validate size... Moderate Unreviewed
CVE-2023-52606 was published Mar 6, 2024
JWCrypto vulnerable to JWT bomb Attack in `deserialize` function Moderate
CVE-2024-28102 was published for jwcrypto (pip) Mar 6, 2024
P3ngu1nW
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit... Moderate Unreviewed
CVE-2024-26618 was published Mar 11, 2024
Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged... High Unreviewed
CVE-2020-11862 was published Mar 14, 2024
Mattermost Server Resource Exhaustion Low
CVE-2024-28053 was published for github.com/mattermost/mattermost-server (Go) Mar 15, 2024
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before... Moderate Unreviewed
CVE-2024-2446 was published Mar 15, 2024
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix freeing... Moderate Unreviewed
CVE-2021-47130 was published Mar 15, 2024
Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 (and before 6.0.13 LTS), and Varnish Enterprise... High Unreviewed
CVE-2024-30156 was published Mar 24, 2024
In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory... High Unreviewed
CVE-2021-47137 was published Mar 25, 2024
In the Linux kernel, the following vulnerability has been resolved: USB: usbfs: Don't WARN about... Moderate Unreviewed
CVE-2021-47170 was published Mar 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database