GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
272 advisories
Filter by severity
Drupal core Denial of Service
High
CVE-2024-11941
was published
for
drupal/core
(Composer)
Dec 5, 2024
In ElementaryStreamQueue::dequeueAccessUnitMPEG4Video of ESQueue.cpp, there is a possible...
High
Unreviewed
CVE-2017-13313
was published
Nov 16, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50319
was published
Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50320
was published
Nov 12, 2024
An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to...
High
Unreviewed
CVE-2024-50321
was published
Nov 12, 2024
GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of...
High
Unreviewed
CVE-2024-52532
was published
Nov 11, 2024
Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP...
High
Unreviewed
CVE-2024-45692
was published
Sep 5, 2024
There is a HIGH severity vulnerability affecting the CPython "zipfile"
module.
When...
High
Unreviewed
CVE-2024-8088
was published
Aug 22, 2024
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
High
Unreviewed
CVE-2024-23352
was published
Aug 5, 2024
go-chart v2.1.1 was discovered to contain an infinite loop via the drawCanvas() function.
High
Unreviewed
CVE-2024-40060
was published
Jul 23, 2024
libyaml v0.2.5 is vulnerable to DDOS. Affected by this issue is the function yaml_parser_parse of...
High
Unreviewed
CVE-2024-35328
was published
Jun 13, 2024
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when...
High
Unreviewed
CVE-2024-36732
was published
Jun 6, 2024
Soot Infinite Loop vulnerability
High
CVE-2023-46442
was published
for
org.soot-oss:soot
(Maven)
May 24, 2024
aiohttp vulnerable to Denial of Service when trying to parse malformed POST requests
High
CVE-2024-30251
was published
for
aiohttp
(pip)
May 3, 2024
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)...
High
Unreviewed
CVE-2024-20353
was published
Apr 24, 2024
Denial of Service Vulnerability in Rustls Library
High
CVE-2024-32650
was published
for
rustls
(Rust)
Apr 19, 2024
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache NimBLE.
...
High
Unreviewed
CVE-2024-24746
was published
Apr 6, 2024
CodeIgniter4 DoS Vulnerability
High
CVE-2024-29904
was published
for
codeigniter4/framework
(Composer)
Mar 29, 2024
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that...
High
Unreviewed
CVE-2024-1931
was published
Mar 7, 2024
Certain WithSecure products allow a Denial of Service because the engine scanner can go into an...
High
Unreviewed
CVE-2024-27359
was published
Feb 26, 2024
Apache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file
High
CVE-2024-25710
was published
for
org.apache.commons:commons-compress
(Maven)
Feb 19, 2024
ProTip!
Advisories are also available from the
GraphQL API