Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,033
Erlang
29
GitHub Actions
18
Go
1,844
Maven
5,000+
npm
3,580
NuGet
634
pip
3,164
Pub
10
RubyGems
850
Rust
803
Swift
34
Unreviewed advisories
All unreviewed
5,000+

707 advisories

Loading
Miniscript allows stack consumption Moderate
CVE-2024-44073 was published for miniscript (Rust) Aug 19, 2024
When performing an online tag generation to devices which communicate using the ControlLogix... Moderate Unreviewed
CVE-2024-6098 was published Aug 16, 2024
Russh has an OOM Denial of Service due to allocation of untrusted amount High
GHSA-vgvv-x7xg-6cqg was published for russh (Rust) Aug 14, 2024
Noratrieb Eugeny
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system... High Unreviewed
CVE-2024-7113 was published Aug 13, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: use ... Moderate Unreviewed
CVE-2024-42258 was published Aug 12, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system... High Unreviewed
CVE-2024-36462 was published Aug 12, 2024
In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid... Moderate Unreviewed
CVE-2024-42247 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix max_seg_size... Moderate Unreviewed
CVE-2024-42242 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized... Moderate Unreviewed
CVE-2024-42241 was published Aug 7, 2024
REXML DoS vulnerability Moderate
CVE-2024-41946 was published for rexml (RubyGems) Aug 2, 2024
naitoh
REXML DoS vulnerability Moderate
CVE-2024-41123 was published for rexml (RubyGems) Aug 1, 2024
GraphQL Java does not properly consider ExecutableNormalizedFields (ENFs) as part of preventing denial of service High
CVE-2024-40094 was published for com.graphql-java:graphql-java (Maven) Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: xdp: Remove WARN() from... Moderate Unreviewed
CVE-2024-42082 was published Jul 29, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the... High Unreviewed
CVE-2024-1737 was published Jul 23, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ... High Unreviewed
CVE-2024-1975 was published Jul 23, 2024
A malicious client can send many DNS messages over TCP, potentially causing the server to become... High Unreviewed
CVE-2024-0760 was published Jul 23, 2024
DNSJava vulnerable to KeyTrap - Denial-of-Service Algorithmic Complexity Attacks Moderate
GHSA-crjg-w57m-rqqf was published for dnsjava:dnsjava (Maven) Jul 22, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overrunning... Moderate Unreviewed
CVE-2024-41009 was published Jul 17, 2024
Django vulnerable to Denial of Service High
CVE-2024-38875 was published for Django (pip) Jul 10, 2024
Django vulnerable to Denial of Service High
CVE-2024-39614 was published for Django (pip) Jul 10, 2024
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub... High Unreviewed
CVE-2024-6598 was published Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed
CVE-2024-39876 was published Jul 9, 2024
OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability High
CVE-2024-33862 was published for OPCFoundation.NetStandard.Opc.Ua.Core (NuGet) Jul 6, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: do not call... Moderate Unreviewed
CVE-2024-39477 was published Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix vmalloc... Moderate Unreviewed
CVE-2024-39474 was published Jul 5, 2024
ProTip! Advisories are also available from the GraphQL API