GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,250

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

705 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in Samsung Mobile Processor and Modem Exynos 9820, 9825, 980, 990, 1080,... Moderate Unreviewed

CVE-2024-46921 was published Jan 13, 2025

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed

CVE-2024-41762 was published Dec 7, 2024

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed

CVE-2024-41761 was published Nov 23, 2024

An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the... High Unreviewed

CVE-2023-30455 was published Apr 28, 2023

Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed

CVE-2023-28882 was published Apr 28, 2023

Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it... High Unreviewed

CVE-2024-12705 was published Jan 30, 2025

IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2023-26285 was published May 5, 2023

An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed

CVE-2024-57519 was published Jan 29, 2025

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3,... Critical Unreviewed

CVE-2023-27958 was published May 8, 2023

In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API... High Unreviewed

CVE-2024-56316 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma... Critical Unreviewed

CVE-2025-24163 was published Jan 28, 2025

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3,... Moderate Unreviewed

CVE-2025-24158 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Critical Unreviewed

CVE-2025-24124 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura... Critical Unreviewed

CVE-2025-24123 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Critical Unreviewed

CVE-2025-24139 was published Jan 28, 2025

An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may... High Unreviewed

CVE-2024-55195 was published Jan 24, 2025

A vulnerability has been identified where a maliciously crafted message containing a specific... High Unreviewed

CVE-2023-28356 was published May 12, 2023

A malicious or compromised UApp or ABL can send a malformed system call to the bootloader, which... Critical Unreviewed

CVE-2021-46760 was published May 9, 2023

An Allocation of Resources Without Limits or Throttling vulnerability in Cesanta Frozen versions... Moderate Unreviewed

CVE-2025-0695 was published Jan 27, 2025

Jerryscript 3.0 (commit 05dbbd1) was discovered to contain out-of-memory issue in malloc. Moderate Unreviewed

CVE-2023-31914 was published May 12, 2023

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2025-21492 was published Jan 21, 2025

In pushDynamicShortcut of ShortcutPackage.java, there is a possible way to get the device into a... Moderate Unreviewed

CVE-2023-20930 was published May 16, 2023

In several functions of SnoozeHelper.java, there is a possible way to grant notifications access... High Unreviewed

CVE-2023-21110 was published May 16, 2023

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed

CVE-2025-21491 was published Jan 21, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed

CVE-2025-21490 was published Jan 21, 2025

Previous 1 2 3 4 5 … 28 29 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

705 advisories