Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

899 advisories

Loading
Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-34701 was published Aug 10, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-20971 was published Jan 17, 2024
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core)... Moderate Unreviewed
CVE-2024-20959 was published Jan 17, 2024
In Splunk Enterprise Security (ES) versions below 7.1.2, an attacker can use investigation... Moderate Unreviewed
CVE-2024-22164 was published Jan 9, 2024
In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via... Moderate Unreviewed
CVE-2022-25313 was published Feb 19, 2022
An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service ... Moderate Unreviewed
CVE-2024-53423 was published May 29, 2025
Azure Site Recovery Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-35776 was published Aug 10, 2022
A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong... Moderate Unreviewed
CVE-2025-26466 was published Mar 1, 2025
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in... Moderate Unreviewed
CVE-2022-41844 was published Oct 1, 2022
An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo... Moderate Unreviewed
CVE-2022-41842 was published Oct 1, 2022
VMware ESXi contains a denial-of-service vulnerability that occurs when performing a guest... Moderate Unreviewed
CVE-2025-41226 was published May 20, 2025
VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain... Moderate Unreviewed
CVE-2025-41227 was published May 20, 2025
Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-29957 was published May 13, 2025
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows... Moderate Unreviewed
CVE-2025-29954 was published May 13, 2025
Dell PowerScale InsightIQ, version 5.2, contains an uncontrolled resource consumption... Moderate Unreviewed
CVE-2025-30476 was published May 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2024-20977 was published Jan 17, 2024
In cell service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed
CVE-2022-38677 was published Oct 15, 2022
In music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed
CVE-2022-38679 was published Oct 15, 2022
In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-38687 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39127 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39123 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39128 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39125 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39126 was published Oct 15, 2022
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39124 was published Oct 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database