Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,907 advisories

Loading
Uncontrolled resource consumption vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04.... High Unreviewed
CVE-2025-41360 was published Jun 6, 2025
Uncontrolled resource consumption vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04.... High Unreviewed
CVE-2025-41361 was published Jun 6, 2025
An issue in the box_equal function in openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2023-48951 was published Nov 29, 2023
Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-34701 was published Aug 10, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-20971 was published Jan 17, 2024
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core)... Moderate Unreviewed
CVE-2024-20959 was published Jan 17, 2024
In Splunk Enterprise Security (ES) versions below 7.1.2, an attacker can use investigation... Moderate Unreviewed
CVE-2024-22164 was published Jan 9, 2024
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. ... High Unreviewed
CVE-2023-34061 was published Jan 12, 2024
In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via... Moderate Unreviewed
CVE-2022-25313 was published Feb 19, 2022
An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service ... Moderate Unreviewed
CVE-2024-53423 was published May 29, 2025
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-35769 was published Aug 10, 2022
Azure Site Recovery Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-35776 was published Aug 10, 2022
A denial-of-service issue was discovered in MediaWiki 1.37.x before 1.37.2. Rendering of w/index... High Unreviewed
CVE-2022-28204 was published Sep 20, 2022
A remote potential adjacent denial of service (DoS) and potential adjacent arbitrary code... High Unreviewed
CVE-2022-28639 was published Sep 21, 2022
A lack of rate limiting in pjActionAjaxSend in Car Rental v3.0 allows attackers to cause resource... High Unreviewed
CVE-2023-48834 was published Dec 7, 2023
A vulnerability exists in the ClearPass Policy Manager Guest User Interface that can allow an... High Unreviewed
CVE-2022-37884 was published Sep 21, 2022
A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong... Moderate Unreviewed
CVE-2025-26466 was published Mar 1, 2025
Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption)... High Unreviewed
CVE-2022-40188 was published Sep 25, 2022
This issue was addressed with improved checks. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS... High Unreviewed
CVE-2022-32790 was published Sep 25, 2022
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows... High Unreviewed
CVE-2023-41151 was published Dec 14, 2023
A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections,... High Unreviewed
CVE-2025-5024 was published May 22, 2025
On Realtek RTL8195AM devices before 284241d70308ff2519e40afd7b284ba892c730a3, the timer task can... High Unreviewed
CVE-2022-34326 was published Sep 28, 2022
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in... Moderate Unreviewed
CVE-2022-41844 was published Oct 1, 2022
An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo... Moderate Unreviewed
CVE-2022-41842 was published Oct 1, 2022
VMware ESXi contains a denial-of-service vulnerability that occurs when performing a guest... Moderate Unreviewed
CVE-2025-41226 was published May 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database