Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,002 advisories

Loading
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Moderate Unreviewed
CVE-2024-54497 was published Jan 28, 2025
Ribose RNP before 0.16.3 may hang when the input is malformed. Moderate Unreviewed
CVE-2023-29479 was published Apr 24, 2023
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_ffi_cb_free at src... Moderate Unreviewed
CVE-2023-29570 was published Apr 24, 2023
Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a... High Unreviewed
CVE-2023-29779 was published Apr 25, 2023
Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines() method would not ... High Unreviewed
CVE-2024-12254 was published Dec 6, 2024
An issue was discovered in Samsung Mobile Processor and Modem Exynos 9820, 9825, 980, 990, 1080,... Moderate Unreviewed
CVE-2024-46921 was published Jan 13, 2025
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2024-41762 was published Dec 7, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2024-41761 was published Nov 23, 2024
An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the... High Unreviewed
CVE-2023-30455 was published Apr 28, 2023
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed
CVE-2023-28882 was published Apr 28, 2023
IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of... High Unreviewed
CVE-2023-26285 was published May 5, 2023
Liferay Portal vulnerable to Denial of Service Moderate
CVE-2024-26265 was published for com.liferay.portal:release.portal.bom (Maven) Feb 20, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3,... Critical Unreviewed
CVE-2023-27958 was published May 8, 2023
In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API... High Unreviewed
CVE-2024-56316 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma... Critical Unreviewed
CVE-2025-24163 was published Jan 28, 2025
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3,... Moderate Unreviewed
CVE-2025-24158 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Critical Unreviewed
CVE-2025-24124 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Critical Unreviewed
CVE-2025-24123 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Critical Unreviewed
CVE-2025-24139 was published Jan 28, 2025
An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may... High Unreviewed
CVE-2024-55195 was published Jan 24, 2025
A vulnerability has been identified where a maliciously crafted message containing a specific... High Unreviewed
CVE-2023-28356 was published May 12, 2023
A malicious or compromised UApp or ABL can send a malformed system call to the bootloader, which... Critical Unreviewed
CVE-2021-46760 was published May 9, 2023
An Allocation of Resources Without Limits or Throttling vulnerability in Cesanta Frozen versions... Moderate Unreviewed
CVE-2025-0695 was published Jan 27, 2025
Spring Security vulnerable to Authorization Bypass of Static Resources in WebFlux Applications Critical
CVE-2024-38821 was published for org.springframework.security:spring-security-web (Maven) Oct 28, 2024
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain out-of-memory issue in malloc. Moderate Unreviewed
CVE-2023-31914 was published May 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database