Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,942
NuGet
711
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+

218 advisories

Loading
@hono/node-server has Denial of Service risk when receiving Host header that cannot be parsed High
CVE-2024-32652 was published for @hono/node-server (npm) Apr 19, 2024
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd)... High Unreviewed
CVE-2024-30382 was published Apr 12, 2024
Traefik vulnerable to denial of service with Content-length header High
CVE-2024-28869 was published for github.com/traefik/traefik (Go) Apr 12, 2024
Prajithp
there is a possible way to bypass due to a logic error in the code. This could lead to local... High Unreviewed
CVE-2024-29748 was published Apr 5, 2024
An improper error handling vulnerability in LabVIEW may result in remote code execution. ... High Unreviewed
CVE-2024-23612 was published Mar 11, 2024
An improper error handling vulnerability in LabVIEW may result in remote code execution. ... High Unreviewed
CVE-2024-23609 was published Mar 11, 2024
Comarch ERP XL client is vulnerable to MS SQL protocol downgrade request from a server side, what... High Unreviewed
CVE-2023-4537 was published Feb 15, 2024
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in... High Unreviewed
CVE-2023-25543 was published Feb 6, 2024
Quarkus Improper Handling of Insufficient Permissions or Privileges and Improper Handling of Exceptional Conditions vulnerability High
CVE-2023-6267 was published for io.quarkus.resteasy.reactive:resteasy-reactive (Maven) Jan 25, 2024
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow... High Unreviewed
CVE-2021-42146 was published Jan 24, 2024
An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through... High Unreviewed
CVE-2021-42145 was published Jan 24, 2024
AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could... High Unreviewed
CVE-2023-34348 was published Jan 18, 2024
Duplicate Advisory: Improper Handling of Exceptional Conditions in Newtonsoft.Json High
GHSA-8rfx-6mr3-5jh3 was published for Newtonsoft.Json (NuGet) Jan 3, 2024 withdrawn
TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in... High Unreviewed
CVE-2023-6866 was published Dec 19, 2023
Unauthenticated Denial of Service in the octokit/webhooks library High
CVE-2023-50728 was published for @octokit/app (npm) Dec 16, 2023
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows... High Unreviewed
CVE-2023-41151 was published Dec 14, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... High Unreviewed
CVE-2023-22292 was published Nov 14, 2023
Calico Typha denial of service vulnerability High
CVE-2023-41378 was published for github.com/projectcalico/calico (Go) Nov 6, 2023
Directus crashes on invalid WebSocket message High
CVE-2023-45820 was published for directus (npm) Oct 19, 2023
nles
XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file.... High Unreviewed
CVE-2023-43251 was published Oct 19, 2023
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper... High Unreviewed
CVE-2023-44186 was published Oct 11, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.  ... High Unreviewed
CVE-2023-41085 was published Oct 10, 2023
VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. High Unreviewed
CVE-2023-44488 was published Sep 30, 2023
A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE)... High Unreviewed
CVE-2023-20243 was published Sep 6, 2023
Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed
CVE-2023-4540 was published Sep 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database