Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,367 advisories

Loading
Uncontrolled Resource Consumption vulnerability in Saturday Drive Ninja Forms Contact Form – The... Moderate Unreviewed
CVE-2023-35909 was published Dec 7, 2023
tokio-boring vulnerable to resource exhaustion via memory leak Moderate
CVE-2023-6180 was published for tokio-boring (Rust) Dec 5, 2023
ehaydenr
Credited to ehaydenr
lestrrat-go/jwx's malicious parameters in JWE can cause a DOS Moderate
CVE-2023-49290 was published for github.com/lestrrat-go/jwx (Go) Dec 5, 2023
P3ngu1nW
Credited to P3ngu1nW
Traefik vulnerable to potential DDoS via ACME HTTPChallenge Moderate
CVE-2023-47124 was published for github.com/traefik/traefik/v2 (Go) Dec 5, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, 11.5 is vulnerable... Moderate Unreviewed
CVE-2023-40692 was published Dec 4, 2023
A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by... Moderate Unreviewed
CVE-2023-5915 was published Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 10.5 before 16.4.3... Moderate Unreviewed
CVE-2023-4912 was published Dec 1, 2023
Knative Serving vulnerable to attacker-controlled pod causing denial of service of autoscaler Moderate
CVE-2023-48713 was published for knative.dev/serving (Go) Nov 27, 2023
AdamKorcz
Credited to AdamKorcz
Mattermost Uncontrolled Resource Consumption vulnerability Moderate
CVE-2023-48369 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 27, 2023
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for... Moderate Unreviewed
CVE-2023-5871 was published Nov 27, 2023
Mattermost Uncontrolled Resource Consumption vulnerability Moderate
CVE-2023-40703 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 27, 2023
Mattermost Uncontrolled Resource Consumption vulnerability Moderate
CVE-2023-48268 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 27, 2023
Ethereum ABI decoder DoS when parsing ZST Moderate
GHSA-rqr8-pxh7-cq3g was published for eth-abi (pip) Nov 24, 2023
maxammann
Credited to maxammann
Bouncy Castle Denial of Service (DoS) Moderate
CVE-2023-33202 was published for org.bouncycastle:bcpkix-jdk18on (Maven) Nov 23, 2023
ind-team ebickle
mpihelgas
Credited to ind-team, ebickle, and mpihelgas
A possibility of unwanted server memory consumption was detected through the obsolete... Moderate Unreviewed
CVE-2023-6117 was published Nov 22, 2023
Decryption of malicious PBES2 JWE objects can consume unbounded system resources Moderate
GHSA-2c7c-3mj9-8fqh was published for github.com/go-jose/go-jose/v3 (Go) Nov 21, 2023
mcpherrinm
Credited to mcpherrinm
pocketmine/raklib reliable-ordered queue size is unlimited, allowing a session to hog server memory Moderate
GHSA-w98g-5fmx-wm4x was published for pocketmine/raklib (Composer) Nov 15, 2023
Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom... Moderate Unreviewed
CVE-2023-39203 was published Nov 15, 2023
Uncontrolled resource consumption in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may... Moderate Unreviewed
CVE-2023-25949 was published Nov 14, 2023
Visual Studio Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-36042 was published Nov 14, 2023
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... Moderate Unreviewed
CVE-2023-44321 was published Nov 14, 2023
IBM AIX's 7.3 Python implementation could allow a non-privileged local user to exploit a... Moderate Unreviewed
CVE-2023-45167 was published Nov 10, 2023
Mattermost vulnerable to excessive memory consumption Moderate
CVE-2023-5969 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 6, 2023
MarkLee131
Credited to MarkLee131
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16... Moderate Unreviewed
CVE-2023-3909 was published Nov 6, 2023
An issue has been discovered in GitLab EE/CE affecting all versions starting before 16.3.6, all... Moderate Unreviewed
CVE-2023-3246 was published Nov 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database