Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,231 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix... Moderate Unreviewed
CVE-2021-47182 was published Apr 10, 2024
Cosign malicious attachments can cause system-wide denial of service Moderate
CVE-2024-29902 was published for github.com/sigstore/cosign (Go) Apr 11, 2024
AdamKorcz
Cosign malicious artifacts can cause machine-wide DoS Moderate
CVE-2024-29903 was published for github.com/sigstore/cosign (Go) Apr 11, 2024
AdamKorcz DavidKorczynski
SixLabors.ImageSharp vulnerable to Memory Allocation with Excessive Size Value Moderate
CVE-2024-32035 was published for SixLabors.ImageSharp (NuGet) Apr 15, 2024
skanejohan
In lunary-ai/lunary version 1.0.0, an authorization flaw exists that allows unauthorized radar... High Unreviewed
CVE-2024-1666 was published Apr 16, 2024
lunary-ai/lunary version 1.0.0 is vulnerable to unauthorized evaluation creation due to missing... Moderate Unreviewed
CVE-2024-1665 was published Apr 16, 2024
There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server... Low Unreviewed
CVE-2024-3302 was published Apr 16, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2024-21011 was published Apr 17, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary). ... Moderate Unreviewed
CVE-2024-21060 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix... Moderate Unreviewed
CVE-2024-26894 was published Apr 17, 2024
Synapse V2 state resolution weakness allows Denial of Service (DoS) Moderate
CVE-2024-31208 was published for matrix-synapse (pip) Apr 23, 2024
alexeyshch
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3... Moderate Unreviewed
CVE-2024-25026 was published Apr 25, 2024
Mattermost fails to limit the number of active sessions Moderate
CVE-2024-4183 was published for github.com/mattermost/mattermost-server (Go) Apr 26, 2024
Mattermost fails to limit the size of a request path Low
CVE-2024-22091 was published for github.com/mattermost/mattermost-server (Go) Apr 26, 2024
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for... High Unreviewed
CVE-2024-34046 was published Apr 30, 2024
In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate... Moderate Unreviewed
CVE-2024-27013 was published May 1, 2024
Wildfly vulnerable to denial of service Moderate
CVE-2024-4029 was published for org.wildfly:wildfly-domain-http (Maven) May 2, 2024
An excessive memory use issue (CWE-770) exists in Email-MIME, before version 1.954, which can... High Unreviewed
CVE-2024-4140 was published May 2, 2024
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due... Moderate Unreviewed
CVE-2024-0026 was published May 7, 2024
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to... Moderate Unreviewed
CVE-2024-0027 was published May 7, 2024
Malicious Long Unicode filenames may cause a Multiple Application-level Denial of Service Critical
CVE-2024-32874 was published for frigate (pip) May 9, 2024
Sim4n6
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is... Moderate Unreviewed
CVE-2024-28760 was published May 14, 2024
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS... High Unreviewed
CVE-2024-27804 was published May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 prior to... Moderate Unreviewed
CVE-2024-2454 was published May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to... Moderate Unreviewed
CVE-2024-4539 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database