Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,740
Maven
5,000+
npm
4,338
NuGet
765
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

18 advisories

Loading
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted... High Unreviewed
CVE-2021-38447 was published May 6, 2022
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed... High Unreviewed
CVE-2018-15492 was published May 14, 2022
Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This... High Unreviewed
CVE-2019-11479 was published May 24, 2022
An issue was found in the CPython `zipfile` module affecting versions 3.12.2, 3.11.8, 3.10.13, 3... Moderate Unreviewed
CVE-2024-0450 was published Mar 19, 2024
An issue in The Document Foundation Libreoffice v.7.4.7 allows a remote attacker to cause a... Moderate Unreviewed
CVE-2023-36268 was published Apr 30, 2024
IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to cause a denial of service... Moderate Unreviewed
CVE-2024-39743 was published Jul 8, 2024
IBM InfoSphere Information Server could allow an authenticated user to consume file space... Moderate Unreviewed
CVE-2024-40705 was published Aug 15, 2024
An unauthenticated  denial of service vulnerability exists in the SMM v1, SMM v2, and FPC... High Unreviewed
CVE-2023-2992 was published Jun 26, 2023
nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial... Low Unreviewed
CVE-2024-28214 was published Mar 7, 2024
It is possible to construct a zone such that some queries to it will generate responses... High Unreviewed
CVE-2024-11187 was published Jan 30, 2025
HCL Connections Docs may mishandle validation of certain uploaded documents leading to denial of... Moderate Unreviewed
CVE-2025-31987 was published Aug 15, 2025
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are ... Moderate Unreviewed
CVE-2025-26516 was published Sep 19, 2025
Querying for records within a specially crafted zone containing certain malformed DNSKEY records... High Unreviewed
CVE-2025-8677 was published Oct 22, 2025
An authenticated Zabbix user (including Guest) is able to cause disproportionate CPU load on the... Moderate Unreviewed
CVE-2025-49643 was published Dec 1, 2025
This High severity DoS (Denial of Service) vulnerability was introduced in version 2.0 of... High Unreviewed
CVE-2025-22166 was published Oct 21, 2025
SAP NetWeaver remote service for Xcelsius allows an attacker with network access and high... High Unreviewed
CVE-2025-42874 was published Dec 9, 2025
SAPUI5 (and OpenUI5) packages use outdated 3rd party libraries with known security... Moderate Unreviewed
CVE-2025-42873 was published Dec 9, 2025
Due to a Missing Authorization Check vulnerability in SAP S/4 HANA Private Cloud (Financials... High Unreviewed
CVE-2025-42876 was published Dec 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database