Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,438 advisories

Loading
A vulnerability in parisneo/lollms-webui v13 arises from the server's handling of multipart... High Unreviewed
CVE-2025-1451 was published Mar 20, 2025
Aim Uncontrolled Resource Consumption vulnerability High
CVE-2025-0189 was published for aim (pip) Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app... High Unreviewed
CVE-2025-0187 was published Mar 20, 2025
A vulnerability in danswer-ai/danswer version 0.9.0 allows for denial of service through memory... High Unreviewed
CVE-2025-0182 was published Mar 20, 2025
Redlib allows a Denial of Service via DEFLATE Decompression Bomb in restore_preferences Form High
CVE-2025-30160 was published for redlib (Rust) Mar 21, 2025
Tokarak
In NASA cFS (Core Flight System) Aquila, it is possible to put the onboard software in a state... High Unreviewed
CVE-2025-25374 was published Mar 25, 2025
An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to... High Unreviewed
CVE-2025-29484 was published Mar 27, 2025
An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to... High Unreviewed
CVE-2025-29487 was published Mar 27, 2025
A flaw was found in the OpenShift Lightspeed Service, which is vulnerable to unauthenticated API... High Unreviewed
CVE-2025-2586 was published Mar 31, 2025
An issue was discovered in Stormshield Network Security (SNS) 4.3.x before 4.3.35. If multicast... High Unreviewed
CVE-2025-27829 was published Apr 1, 2025
This vulnerability affects Snowplow Collector 3.x before 3.3.0 (unless it’s set up behind a... High Unreviewed
CVE-2024-56528 was published Apr 3, 2025
An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads... High Unreviewed
CVE-2024-47212 was published Apr 3, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-21174 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized... High Unreviewed
CVE-2025-26641 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-26652 was published Apr 8, 2025
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows... High Unreviewed
CVE-2025-26673 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-26680 was published Apr 8, 2025
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows... High Unreviewed
CVE-2025-27469 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-27470 was published Apr 8, 2025
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny... High Unreviewed
CVE-2025-27473 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-27485 was published Apr 8, 2025
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an... High Unreviewed
CVE-2025-27486 was published Apr 8, 2025
An issue in sqlite v.3.49.0 allows an attacker to cause a denial of service via the... High Unreviewed
CVE-2025-29088 was published Apr 10, 2025
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite ... High Unreviewed
CVE-2025-30730 was published Apr 15, 2025
There is a code-related vulnerability in the GoldenDB database product. Attackers can access... High Unreviewed
CVE-2025-46580 was published Apr 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database