Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,048 advisories

Loading
Improper Handling of Highly Compressed Data (Data Amplification) and Memory Allocation with Excessive Size Value in eventlet Moderate
CVE-2021-21419 was published for eventlet (pip) May 7, 2021
ReDoS issue in dparse Moderate
CVE-2022-39280 was published for dparse (pip) Sep 27, 2022
Django Denial-of-service in django.utils.text.Truncator Moderate
CVE-2023-43665 was published for Django (pip) Nov 3, 2023
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri Moderate
CVE-2023-41164 was published for django (pip) Nov 3, 2023
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before... Moderate Unreviewed
CVE-2023-4162 was published Aug 31, 2023
Django is vulnerable to Denial of Service attack in formset Moderate
CVE-2013-0306 was published for Django (pip) May 5, 2022
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Moderate Unreviewed
CVE-2024-8892 was published Sep 18, 2024
vLLM Denial of Service via the best_of parameter Moderate
CVE-2024-8939 was published for vllm (pip) Sep 17, 2024
Django vulnerable to Denial of Service via i18n middleware component Moderate
CVE-2007-5712 was published for Django (pip) May 1, 2022
MarkLee131
In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2018-19881 was published May 14, 2022
Vulnerability in the Oracle Health Sciences InForm product of Oracle Health Sciences Applications... Moderate Unreviewed
CVE-2023-21925 was published Apr 18, 2023
A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used... Moderate Unreviewed
CVE-2023-42669 was published Nov 6, 2023
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. The... Moderate Unreviewed
CVE-2024-33881 was published Jun 24, 2024
DNSJava affected by KeyTrap - NSEC3 closest encloser proof can exhaust CPU resources Moderate
GHSA-mmwx-rj87-vfgr was published for dnsjava:dnsjava (Maven) Jul 22, 2024
levpachmanov amita-seal
An inconsistent user interface issue was addressed with improved state management. This issue is... Moderate Unreviewed
CVE-2023-40408 was published Oct 25, 2023
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of... Moderate Unreviewed
CVE-2017-2680 was published May 13, 2022
A vulnerability has been identified in CP1604 (All versions < V2.8), CP1616 (All versions < V2.8)... Moderate Unreviewed
CVE-2019-10923 was published May 24, 2022
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected... Moderate Unreviewed
CVE-2017-2681 was published May 13, 2022
Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. Moderate
CVE-2024-29857 was published for BouncyCastle (Maven) May 14, 2024
levpachmanov
Bouncy Castle Denial of Service (DoS) Moderate
CVE-2023-33202 was published for org.bouncycastle:bcpkix-jdk18on (Maven) Nov 23, 2023
ind-team ebickle
Ghcml mpihelgas
OCI image importer memory exhaustion in github.com/containerd/containerd Moderate
CVE-2023-25153 was published for github.com/containerd/containerd (Go) Feb 16, 2023
AdamKorcz DavidKorczynski
IObit Malware Fighter v11.0.0.1274 is vulnerable to a Denial of Service vulnerability by... Moderate Unreviewed
CVE-2024-0430 was published Jan 22, 2024
Vba32 Antivirus v3.36.0 is vulnerable to a Denial of Service vulnerability by triggering the... Moderate Unreviewed
CVE-2024-23441 was published Jan 29, 2024
An uncontrolled resource consumption vulnerability issue that could arise by sending crafted... Moderate Unreviewed
CVE-2023-22819 was published Feb 6, 2024
Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at... Moderate Unreviewed
CVE-2023-46361 was published Oct 31, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database