Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported... Moderate Unreviewed
CVE-2025-21575 was published Apr 15, 2025
Processing a file may lead to a denial-of-service or potentially disclose memory contents. This... Moderate Unreviewed
CVE-2023-42983 was published Apr 11, 2025
A potential security vulnerability in HPE NonStop OSM Service Connection Suite could potentially... Moderate Unreviewed
CVE-2025-27081 was published Apr 10, 2025
Elasticsearch Vulnerable to Stack Overflow due to a Large Recursion Moderate
CVE-2024-52981 was published for org.elasticsearch:elasticsearch (Maven) Apr 8, 2025
AnonySE26
Credited to AnonySE26
An issue has been identified where a specially crafted request sent to an Observability API could... Moderate Unreviewed
CVE-2024-52974 was published Apr 8, 2025
Elasticsearch Potential Node Crash due to Large Recursion in `innerForbidCircularReferences` Function Moderate
CVE-2024-52980 was published for org.elasticsearch:elasticsearch (Maven) Apr 8, 2025
AnonySE26
Credited to AnonySE26
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the... Moderate Unreviewed
CVE-2025-29478 was published Apr 7, 2025
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the... Moderate Unreviewed
CVE-2025-29477 was published Apr 4, 2025
An uncontrolled format string issue was addressed with improved input validation. This issue is... Moderate Unreviewed
CVE-2025-24199 was published Apr 1, 2025
A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3.... Moderate Unreviewed
CVE-2025-3016 was published Mar 31, 2025
libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD... Moderate Unreviewed
CVE-2025-29490 was published Mar 27, 2025
A vulnerability was found in zhangyd-c OneBlog up to 2.3.9. It has been classified as problematic... Moderate Unreviewed
CVE-2025-2833 was published Mar 27, 2025
An authenticated attacker can compromise the availability of the device via the network Moderate Unreviewed
CVE-2025-2820 was published Mar 26, 2025
: Uncontrolled Resource Consumption vulnerability in Wind River Systems VxWorks 7 on VxWorks... Moderate Unreviewed
CVE-2025-26500 was published Mar 22, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of gaizhenbiao... Moderate Unreviewed
CVE-2025-0191 was published Mar 20, 2025
MLflow Uncontrolled Resource Consumption vulnerability Moderate
CVE-2025-0453 was published for mlflow (pip) Mar 20, 2025
A vulnerability in the Dockerized version of mintplex-labs/anything-llm (latest, digest... Moderate Unreviewed
CVE-2024-7771 was published Mar 20, 2025
MLflow Uncontrolled Resource Consumption vulnerability Moderate
CVE-2024-6838 was published for mlflow (pip) Mar 20, 2025
LlamaIndex Uncontrolled Resource Consumption vulnerability Moderate
CVE-2024-12910 was published for llama-index (pip) Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of... Moderate Unreviewed
CVE-2024-12074 was published Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of binary-husky... Moderate Unreviewed
CVE-2024-11033 was published Mar 20, 2025
A Regular Expression Denial of Service (ReDoS) vulnerability exists in gaizhenbiao/chuanhuchatgpt... Moderate Unreviewed
CVE-2024-10955 was published Mar 20, 2025
OpenShift Hive Has an Uncontrolled Resource Consumption Vulnerability Moderate
CVE-2024-25132 was published for github.com/openshift/hive (Go) Mar 19, 2025
The issue was addressed with improved checks. This issue is fixed in watchOS 11, macOS Sequoia 15... Moderate Unreviewed
CVE-2024-44192 was published Mar 10, 2025
CGI has Denial of Service (DoS) potential in Cookie.parse Moderate
CVE-2025-27219 was published for cgi (RubyGems) Mar 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database