Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,041 advisories

Loading
Denial-of-service vulnerability in the web server of the Eaton SMP SG-4260 allows attacker to... Moderate Unreviewed
CVE-2023-43775 was published Sep 27, 2023
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this... Low Unreviewed
CVE-2023-41310 was published Sep 27, 2023
A resource exhaustion issue was addressed with improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2023-40441 was published Sep 27, 2023
Undertow vulnerable to denial of service High
CVE-2023-3223 was published for io.undertow:undertow-parent (Maven) Sep 27, 2023
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability... Critical Unreviewed
CVE-2023-41294 was published Sep 25, 2023
In nqptp-message-handlers.c in nqptp before 1.2.3, crafted packets received on the control port... Moderate Unreviewed
CVE-2023-43771 was published Sep 22, 2023
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This... High Unreviewed
CVE-2023-43767 was published Sep 22, 2023
plone.rest vulnerable to Denial of Service when ++api++ is used many times Moderate
CVE-2023-42457 was published for plone.rest (pip) Sep 21, 2023
Tungstenite allows remote attackers to cause a denial of service High
CVE-2023-43669 was published for tungstenite (Rust) Sep 21, 2023
bayandin tsal
Credited to bayandin and tsal
graphql Uncontrolled Resource Consumption vulnerability Moderate
CVE-2023-26144 was published for graphql (npm) Sep 20, 2023
An issue was discovered in ImfHpRegFilter.sys in IOBit Malware Fighter version 8.0.2, allows... Moderate Unreviewed
CVE-2020-24089 was published Sep 20, 2023
** UNSUPPPORTED WHEN ASSIGNED ** Uncontrolled resource consumption in ekorRCI, allowing an... Moderate Unreviewed
CVE-2022-47556 was published Sep 19, 2023
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file.... High Unreviewed
CVE-2023-42523 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via processing of a... High Unreviewed
CVE-2023-42521 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import... High Unreviewed
CVE-2023-42522 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via decompression of... High Unreviewed
CVE-2023-42526 was published Sep 18, 2023
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted... High Unreviewed
CVE-2023-42520 was published Sep 18, 2023
Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function.... High Unreviewed
CVE-2022-48475 was published Sep 15, 2023
Control de Ciber, in its 1.650 version, is affected by a Denial of Service condition through the... High Unreviewed
CVE-2022-48474 was published Sep 15, 2023
Cyber Control, in its 1.650 version, is affected by a vulnerability in the generation on the... High Unreviewed
CVE-2022-4896 was published Sep 15, 2023
A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue... Moderate Unreviewed
CVE-2023-32665 was published Sep 14, 2023
A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to... High Unreviewed
CVE-2023-29499 was published Sep 14, 2023
A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a... Moderate Unreviewed
CVE-2023-32611 was published Sep 14, 2023
A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of... High Unreviewed
CVE-2023-32636 was published Sep 14, 2023
Apache Commons Compress denial of service vulnerability Moderate
CVE-2023-42503 was published for org.apache.commons:commons-compress (Maven) Sep 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database