Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,489
Maven
5,000+
npm
4,106
NuGet
735
pip
3,928
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

486 advisories

Loading
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42525 was published Sep 18, 2023
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file... High Unreviewed
CVE-2023-42524 was published Sep 18, 2023
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong... Moderate Unreviewed
CVE-2023-3255 was published Sep 13, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed
CVE-2023-4540 was published Sep 5, 2023
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of... High Unreviewed
CVE-2023-4511 was published Aug 24, 2023
A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software... Moderate Unreviewed
CVE-2023-20200 was published Aug 23, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to... Moderate Unreviewed
CVE-2022-40090 was published Aug 22, 2023
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV... High Unreviewed
CVE-2023-20197 was published Aug 17, 2023
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote... High Unreviewed
CVE-2023-30188 was published Aug 14, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause... Moderate Unreviewed
CVE-2020-36023 was published Aug 11, 2023
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local... Moderate Unreviewed
CVE-2020-24221 was published Aug 11, 2023
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The... Moderate Unreviewed
CVE-2023-4010 was published Jul 31, 2023
A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are... High Unreviewed
CVE-2023-3748 was published Jul 24, 2023
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When... High Unreviewed
CVE-2023-34966 was published Jul 20, 2023
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at... Moderate Unreviewed
CVE-2023-37748 was published Jul 19, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which... Moderate Unreviewed
CVE-2021-33294 was published Jul 18, 2023
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6... High Unreviewed
CVE-2023-38197 was published Jul 13, 2023
A vulnerability in the Administrative XML Web Service (AXL) API of Cisco Unified Communications... Moderate Unreviewed
CVE-2023-20116 was published Jun 28, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0... Moderate Unreviewed
CVE-2023-33305 was published Jun 13, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of... Moderate Unreviewed
CVE-2023-2952 was published May 31, 2023
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via... High Unreviewed
CVE-2023-2879 was published May 26, 2023
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop. Moderate Unreviewed
CVE-2023-30300 was published May 3, 2023
A vulnerability, which was classified as problematic, was found in InternalError503 Forget It up... Low Unreviewed
CVE-2015-10103 was published Apr 17, 2023
This vulnerability allows remote attackers to create a denial-of-service condition on affected... High Unreviewed
CVE-2022-37013 was published Mar 29, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20998 was published Mar 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database