Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,002 advisories

Loading
Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability High
CVE-2024-38286 was published for org.apache.tomcat:tomcat-util (Maven) Nov 7, 2024
Aten PE8108 2.4.232 is vulnerable to denial of service (DOS). Moderate Unreviewed
CVE-2023-25414 was published Apr 11, 2023
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an attacker to cause a denial of... High Unreviewed
CVE-2023-27191 was published Apr 11, 2023
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS... Moderate Unreviewed
CVE-2024-54658 was published Feb 10, 2025
An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before... High Unreviewed
CVE-2018-15472 was published Apr 16, 2023
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a denial of service... High Unreviewed
CVE-2023-27653 was published Apr 14, 2023
An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause... High Unreviewed
CVE-2023-27643 was published Apr 14, 2023
Connection leaking on idle timeout when TCP congested High
CVE-2024-22201 was published for org.eclipse.jetty.http2:http2-common (Maven) Feb 26, 2024
luffy1949
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57672 was published Feb 6, 2025
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology... Moderate Unreviewed
CVE-2024-57673 was published Feb 6, 2025
Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it... High Unreviewed
CVE-2024-12705 was published Jan 30, 2025
TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error, with RpcStatus... High Unreviewed
CVE-2023-30636 was published Apr 14, 2023
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions... Moderate Unreviewed
CVE-2025-1072 was published Feb 7, 2025
Withdrawn Advisory: github.com/hashicorp/yamux's DefaultConfig has dangerous defaults causing hung Read Moderate
GHSA-29qp-crvh-w22m was published for github.com/hashicorp/yamux (Go) Jan 29, 2025 withdrawn
finnigja
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 does not properly rate limit the frequency that an... Moderate Unreviewed
CVE-2024-38316 was published Feb 6, 2025
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to... High Unreviewed
CVE-2024-2878 was published Feb 5, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2024-57519 was published Jan 29, 2025
When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is... High Unreviewed
CVE-2025-24312 was published Feb 5, 2025
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Moderate Unreviewed
CVE-2025-24127 was published Jan 28, 2025
Jerryscript commit 1a2c047 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2023-30408 was published Apr 25, 2023
Jerryscript commit 1a2c047 was discovered to contain a segmentation violation via the component... Moderate Unreviewed
CVE-2023-30406 was published Apr 25, 2023
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4,... Moderate Unreviewed
CVE-2025-24086 was published Jan 28, 2025
A denial of service vulnerability was identified in GitLab CE/EE, affecting all versions from 15... Moderate Unreviewed
CVE-2023-6386 was published Feb 5, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS... Moderate Unreviewed
CVE-2025-24112 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database