Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,031 advisories

Loading
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Moderate Unreviewed
CVE-2024-8892 was published Sep 18, 2024
vLLM Denial of Service via the best_of parameter Moderate
CVE-2024-8939 was published for vllm (pip) Sep 17, 2024
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column)... Moderate Unreviewed
CVE-2024-41434 was published Sep 3, 2024
CWA-2023-004: Excessive number of function parameters in compiled Wasm Moderate
GHSA-75qh-gg76-p2w4 was published for cosmwasm-vm (Go) Aug 27, 2024
Mattermost Plugin Channel Export excessive resource consumption Moderate
CVE-2024-43105 was published for github.com/mattermost/mattermost-plugin-channel-export (Go) Aug 23, 2024
c0rydoras
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior... Moderate Unreviewed
CVE-2024-8041 was published Aug 22, 2024
Mattermost versions 9.5.x <= 9.5.7 and 9.10.x <= 9.10.0 fail to time limit and size limit the CA... Moderate Unreviewed
CVE-2024-39810 was published Aug 22, 2024
fugit parse and parse_nat stall on lengthy input Moderate
CVE-2024-43380 was published for fugit (RubyGems) Aug 19, 2024
personnumber3377 bensheldon
An issue in Silverpeas v.6.4.2 and lower allows a remote attacker to cause a denial of service... Moderate Unreviewed
CVE-2024-42849 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-5209 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-4782 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-6004 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-4781 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-5210 was published Aug 16, 2024
Stack overflow when parsing specially crafted JSON ABI strings Moderate
GHSA-8327-84cj-8xjm was published for alloy-json-abi (Rust) Aug 15, 2024
A denial-of-service vulnerability exists via the CIP/Modbus port in the Rockwell Automation... Moderate Unreviewed
CVE-2024-7567 was published Aug 13, 2024
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python... Moderate Unreviewed
CVE-2024-0115 was published Aug 12, 2024
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all... Moderate Unreviewed
CVE-2024-5423 was published Aug 8, 2024
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions... Moderate Unreviewed
CVE-2024-7610 was published Aug 8, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.10 prior to 17.0... Moderate Unreviewed
CVE-2024-3114 was published Aug 8, 2024
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions... Moderate Unreviewed
CVE-2024-4210 was published Aug 8, 2024
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all... Moderate Unreviewed
CVE-2024-2800 was published Aug 8, 2024
Django memory consumption vulnerability Moderate
CVE-2024-41989 was published for Django (pip) Aug 7, 2024
Podman vulnerable to memory-based denial of service Moderate
CVE-2024-3056 was published for github.com/containers/podman (Go) Aug 2, 2024
REXML DoS vulnerability Moderate
CVE-2024-41946 was published for rexml (RubyGems) Aug 2, 2024
naitoh
ProTip! Advisories are also available from the GraphQL API