Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong... Moderate Unreviewed
CVE-2025-26466 was published Mar 1, 2025
An issue was discovered in O-RAN Near Realtime RIC I-Release. To exploit this vulnerability, an... Moderate Unreviewed
CVE-2024-34036 was published Feb 25, 2025
An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the... Moderate Unreviewed
CVE-2024-34035 was published Feb 25, 2025
DoS in go-jose Parsing Moderate
CVE-2025-27144 was published for github.com/go-jose/go-jose (Go) Feb 24, 2025
lakeFS allows an authenticated user to cause a crash by exhausting server memory Moderate
CVE-2025-27100 was published for github.com/treeverse/lakefs (Go) Feb 21, 2025
arielshaqed ItamarYuran
Credited to arielshaqed and ItamarYuran
An issue in Docker-proxy v18.09.0 allows attackers to cause a denial of service. Moderate Unreviewed
CVE-2024-57782 was published Feb 14, 2025
Node Denial of Service via kubelet Checkpoint API Moderate
CVE-2025-0426 was published for k8s.io/kubernetes (Go) Feb 13, 2025
Internet Connection Sharing (ICS) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21352 was published Feb 11, 2025
A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3... Moderate Unreviewed
CVE-2024-23814 was published Feb 11, 2025
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS... Moderate Unreviewed
CVE-2024-54658 was published Feb 10, 2025
Denial of Service attack on windows app using Netty Moderate
CVE-2025-25193 was published for io.netty:netty-common (Maven) Feb 10, 2025
chrisvest navzen2000
henrikplate JensBoening1337 jfposton
Credited to chrisvest, navzen2000, henrikplate, JensBoening1337, and jfposton
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio nevans
Credited to manunio and nevans
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57673 was published Feb 6, 2025
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57672 was published Feb 6, 2025
A vulnerability, which was classified as problematic, was found in JoeyBling bootplus up to... Moderate Unreviewed
CVE-2025-0704 was published Jan 24, 2025
Apache Wicket: An attacker can intentionally trigger a memory leak Moderate
CVE-2024-53299 was published for org.apache.wicket:wicket-core (Maven) Jan 23, 2025
raboof
Credited to raboof
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2024-57724 was published Jan 23, 2025
In build_read_multi_rsp of gatt_sr.cc, there is a possible denial of service due to a logic error... Moderate Unreviewed
CVE-2024-43763 was published Jan 22, 2025
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). ... Moderate Unreviewed
CVE-2025-21548 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema)... Moderate Unreviewed
CVE-2025-21529 was published Jan 21, 2025
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
Credited to ahollmann, idsulik, thaJeztah, glours, and gbrindisi
In onCreate of EmergencyCallbackModeExitDialog.java, there is a possible way to crash the... Moderate Unreviewed
CVE-2018-9447 was published Jan 18, 2025
Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource... Moderate Unreviewed
CVE-2024-47239 was published Jan 8, 2025
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP... Moderate Unreviewed
CVE-2022-27600 was published Dec 19, 2024
An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability ... Moderate Unreviewed
CVE-2024-12698 was published Dec 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database