Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,317 advisories

Loading
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38067 was published Jul 9, 2024
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38068 was published Jul 9, 2024
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability High Unreviewed
CVE-2024-38031 was published Jul 9, 2024
Windows Line Printer Daemon Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-38027 was published Jul 9, 2024
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability High Unreviewed
CVE-2024-38015 was published Jul 9, 2024
Windows iSCSI Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-35270 was published Jul 9, 2024
A vulnerability was found in OpenJPEG similar to CVE-2019-6988. This flaw allows an attacker to... Moderate Unreviewed
CVE-2023-39328 was published Jul 9, 2024
zipp Denial of Service vulnerability Moderate
CVE-2024-5569 was published for zipp (pip) Jul 9, 2024
Directus GraphQL Field Duplication Denial of Service (DoS) Moderate
CVE-2024-39895 was published for @directus/env (npm) Jul 8, 2024
asantof
In the Linux kernel, the following vulnerability has been resolved: drm/i915/hwmon: Get rid of... High Unreviewed
CVE-2024-39479 was published Jul 5, 2024
Apache Tomcat - Denial of Service High
CVE-2024-34750 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 3, 2024
westonsteimel
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any... Low Unreviewed
CVE-2024-6126 was published Jul 3, 2024
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An... High Unreviewed
CVE-2024-6427 was published Jul 3, 2024
A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted... High Unreviewed
CVE-2024-4467 was published Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to... Moderate Unreviewed
CVE-2024-22104 was published Jul 2, 2024
A path traversal vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410, allowing... High Unreviewed
CVE-2024-6090 was published Jun 27, 2024
h2o vulnerable to unexpected POST request shutting down server High
CVE-2024-5979 was published for h2o (pip) Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5... Moderate Unreviewed
CVE-2024-1493 was published Jun 27, 2024
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all... Moderate Unreviewed
CVE-2024-4557 was published Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 12.0 prior to 16.11... Moderate Unreviewed
CVE-2024-1816 was published Jun 27, 2024
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service ... High Unreviewed
CVE-2024-5013 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an uncontrolled resource consumption... High Unreviewed
CVE-2024-5011 was published Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved: clk: bcm: dvp: Assign ->num... Critical Unreviewed
CVE-2024-39462 was published Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop... High Unreviewed
CVE-2021-4440 was published Jun 25, 2024
A vulnerability in mintplex-labs/anything-llm allows for a Denial of Service (DoS) condition due... High Unreviewed
CVE-2024-5216 was published Jun 25, 2024
ProTip! Advisories are also available from the GraphQL API