Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,800 advisories

Loading
Apereo CAS has inefficient regular expression complexity Moderate
CVE-2025-3986 was published for org.apereo.cas:cas-server-core-configuration-metadata-repository (Maven) Apr 27, 2025
A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This... Moderate Unreviewed
CVE-2025-3985 was published Apr 27, 2025
A vulnerability has been found in scipopt scip up to 9.2.1 and classified as problematic.... Moderate Unreviewed
CVE-2025-4001 was published Apr 28, 2025
net-imap rubygem vulnerable to possible DoS by memory exhaustion Moderate
CVE-2025-43857 was published for net-imap (RubyGems) Apr 28, 2025
Masamuneee nevans
The multiScan and picoScan are vulnerable to a denial-of-service (DoS) attack. A remote attacker... Moderate Unreviewed
CVE-2025-32472 was published Apr 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-24251 was published Apr 29, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-31197 was published Apr 29, 2025
Uncontrolled Resource Consumption in Elasticsearch while evaluating specifically crafted search... Moderate Unreviewed
CVE-2024-52979 was published May 1, 2025
NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager ... Moderate Unreviewed
CVE-2025-23246 was published May 1, 2025
A vulnerability was found in gorhill uBlock Origin up to 1.63.3b16. It has been classified as... Low Unreviewed
CVE-2025-4215 was published May 2, 2025
Linkerd resource exhaustion vulnerability Moderate
CVE-2025-43915 was published for github.com/linkerd/linkerd2 (Go) May 5, 2025
ericd
A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an... High Unreviewed
CVE-2025-20162 was published May 7, 2025
Rack has an Unbounded-Parameter DoS in Rack::QueryParser High
CVE-2025-46727 was published for rack (RubyGems) May 8, 2025
TaiPhung217 jeremyevans
ioquatix
Eclipse Jetty HTTP/2 client can force the server to allocate a humongous byte buffer that may lead to OoM and subsequently the JVM to exit High
CVE-2025-1948 was published for org.eclipse.jetty.http2:jetty-http2-common (Maven) May 8, 2025
bjorncs
Apache Commons Configuration Uncontrolled Resource Consumption Low
CVE-2025-46392 was published for commons-configuration:commons-configuration (Maven) May 9, 2025
LlamaIndex Vulnerable to Denial of Service (DoS) High
CVE-2025-1752 was published for llama-index (pip) May 10, 2025
A vulnerability classified as problematic was found in JeecgBoot up to 3.8.0. This vulnerability... Moderate Unreviewed
CVE-2025-4533 was published May 11, 2025
The issue was addressed with improved UI. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and... High Unreviewed
CVE-2025-31210 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5,... Moderate Unreviewed
CVE-2025-31226 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in watchOS 11.5,... Moderate Unreviewed
CVE-2025-31251 was published May 13, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.6, tvOS 18... Moderate Unreviewed
CVE-2025-31245 was published May 13, 2025
Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized... High Unreviewed
CVE-2025-26677 was published May 13, 2025
Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-29957 was published May 13, 2025
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows... Moderate Unreviewed
CVE-2025-29954 was published May 13, 2025
Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Moderate Unreviewed
CVE-2025-20057 was published May 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database