Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,091 advisories

Loading
In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the... High Unreviewed
CVE-2024-10314 was published Nov 11, 2024
In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the... High Unreviewed
CVE-2024-10345 was published Nov 11, 2024
In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the... High Unreviewed
CVE-2024-10344 was published Nov 11, 2024
Authenticated users can upload specifically crafted files to leak server resources. This behavior... Moderate Unreviewed
CVE-2024-38826 was published Nov 11, 2024
Vulnerability of processes not being fully terminated in the VPN module Impact: Successful... Moderate Unreviewed
CVE-2024-51513 was published Nov 5, 2024
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7... Moderate Unreviewed
CVE-2024-10599 was published Nov 1, 2024
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation... Moderate Unreviewed
CVE-2024-31152 was published Oct 30, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ... High Unreviewed
CVE-2024-7807 was published Oct 29, 2024
By sending a specially crafted push message, a remote server could have hung the parent process,... High Unreviewed
CVE-2024-10466 was published Oct 29, 2024
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow... Moderate Unreviewed
CVE-2024-20526 was published Oct 23, 2024
A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco... High Unreviewed
CVE-2024-20351 was published Oct 23, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to... Moderate Unreviewed
CVE-2024-50311 was published Oct 22, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Low Unreviewed
CVE-2024-21232 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported... Moderate Unreviewed
CVE-2024-21219 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2024-21218 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-21230 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). ... Low Unreviewed
CVE-2024-21231 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2024-21207 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported... Moderate Unreviewed
CVE-2024-21204 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported... Moderate Unreviewed
CVE-2024-21203 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin). ... Moderate Unreviewed
CVE-2024-21196 was published Oct 15, 2024
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2024-21194 was published Oct 15, 2024
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions... Moderate Unreviewed
CVE-2024-45736 was published Oct 14, 2024
A vulnerability in parisneo/lollms-webui version 9.8 allows for a Denial of Service (DOS) attack... High Unreviewed
CVE-2024-6959 was published Oct 13, 2024
An Uncontrolled Resource Consumption vulnerability in the http daemon (httpd) of Juniper Networks... High Unreviewed
CVE-2024-47497 was published Oct 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database