GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,762
NuGet
678
pip
3,447
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,613 advisories
Filter by severity
A vulnerability has been identified where a maliciously crafted message containing a specific...
High
Unreviewed
CVE-2023-28356
was published
May 12, 2023
A vulnerability, which was classified as problematic, was found in JoeyBling bootplus up to...
Moderate
Unreviewed
CVE-2025-0704
was published
Jan 24, 2025
In pushDynamicShortcut of ShortcutPackage.java, there is a possible way to get the device into a...
Moderate
Unreviewed
CVE-2023-20930
was published
May 16, 2023
In several functions of SnoozeHelper.java, there is a possible way to grant notifications access...
High
Unreviewed
CVE-2023-21110
was published
May 16, 2023
Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially...
High
Unreviewed
CVE-2019-9517
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a...
High
Unreviewed
CVE-2019-9518
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of...
High
Unreviewed
CVE-2019-9513
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial...
High
Unreviewed
CVE-2019-9515
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of...
Moderate
Unreviewed
CVE-2019-9516
was published
May 24, 2022
mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty.
Moderate
Unreviewed
CVE-2023-33720
was published
May 26, 2023
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization...
High
Unreviewed
CVE-2019-9511
was published
May 24, 2022
Windows upnphost.dll Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21389
was published
Jan 14, 2025
Windows Remote Desktop Services Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21330
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21270
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21251
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21289
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21290
was published
Jan 14, 2025
Windows upnphost.dll Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21300
was published
Jan 14, 2025
Windows Kerberos Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21218
was published
Jan 14, 2025
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21207
was published
Jan 14, 2025
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
High
Unreviewed
CVE-2024-49129
was published
Dec 12, 2024
If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly...
Moderate
Unreviewed
CVE-2023-0616
was published
Jun 2, 2023
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary...
High
Unreviewed
CVE-2024-4148
was published
Jun 1, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource...
Moderate
Unreviewed
CVE-2024-47239
was published
Jan 8, 2025
ProTip!
Advisories are also available from the
GraphQL API