Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

78 advisories

Loading
PyTorch Lightning denial of service vulnerability High
CVE-2024-8020 was published for pytorch-lightning (pip) Mar 20, 2025
A vulnerability in danny-avila/librechat version git a1647d7 allows an unauthenticated attacker... High Unreviewed
CVE-2024-11172 was published Mar 20, 2025
Formwork improperly validates input of User role preventing site and panel availability High
GHSA-c85w-x26q-ch87 was published for getformwork/formwork (Composer) Mar 1, 2025
Kyokito1412 giuscris
Credited to Kyokito1412 and giuscris
Uncaught Panic in ORML Rewards Pallet High
GHSA-5v93-9mqw-p9mh was published for orml-rewards (Rust) Feb 14, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20176 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20171 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2025-20173 was published Feb 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS... High Unreviewed
CVE-2025-20172 was published Feb 5, 2025
In network HW, there is a possible system hang due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20637 was published Feb 3, 2025
Null pointer dereference vulnerability in the image decoding module Impact: Successful... High Unreviewed
CVE-2024-54106 was published Dec 12, 2024
rPGP Panics on Malformed Untrusted Input High
CVE-2024-53856 was published for pgp (Rust) Dec 5, 2024
invd hko-s
dignifiedquire link2xt
Credited to invd, hko-s, dignifiedquire, and link2xt
In wlan driver, there is a possible client disconnection due to improper handling of exceptional... High Unreviewed
CVE-2024-20137 was published Dec 2, 2024
SurrealDB has an Uncaught Exception Handling Parsing Errors on Empty Strings High
GHSA-qjrv-v6qp-x99x was published for surrealdb (Rust) Oct 8, 2024
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects High
CVE-2024-43367 was published for boa_engine (Rust) Aug 14, 2024
ctcpip arai-a
jedel1043 jasonwilliams nekevss
Credited to ctcpip, arai-a, jedel1043, jasonwilliams, and nekevss
Panic when parsing invalid palette-color images in golang.org/x/image High
CVE-2024-24792 was published for golang.org/x/image (Go) Jun 26, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on... High Unreviewed
CVE-2023-5038 was published Jun 25, 2024
Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is... High Unreviewed
CVE-2024-3052 was published Apr 27, 2024
Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end... High Unreviewed
CVE-2024-3051 was published Apr 27, 2024
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling.... High Unreviewed
CVE-2023-52342 was published Apr 8, 2024
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an... High Unreviewed
CVE-2024-20276 was published Mar 27, 2024
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets... High Unreviewed
CVE-2023-3966 was published Feb 22, 2024
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially... High Unreviewed
CVE-2023-22292 was published Nov 14, 2023
Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this... High Unreviewed
CVE-2023-46765 was published Nov 8, 2023
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and... High Unreviewed
CVE-2023-20086 was published Nov 1, 2023
quic-go vulnerable to pointer dereference that can lead to panic High
CVE-2023-46239 was published for github.com/quic-go/quic-go (Go) Oct 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database