GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
446 advisories
Filter by severity
The frame iterator could get stuck in a loop when encountering certain wasm frames leading to...
Moderate
Unreviewed
CVE-2024-6614
was published
Jul 9, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
Moderate
Unreviewed
CVE-2024-36990
was published
Jul 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
SUNRPC: Fix loop termination...
Moderate
Unreviewed
CVE-2024-36288
was published
Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
PCI: pciehp: Fix infinite...
Moderate
Unreviewed
CVE-2021-47617
was published
Jun 20, 2024
A vulnerability has been found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as...
Moderate
Unreviewed
CVE-2024-6061
was published
Jun 17, 2024
Deep Sea Electronics DSE855 Multipart Boundary Infinite Loop Denial-of-Service Vulnerability....
Moderate
Unreviewed
CVE-2024-5949
was published
Jun 13, 2024
libyaml v0.2.5 is vulnerable to DDOS. Affected by this issue is the function yaml_parser_parse of...
High
Unreviewed
CVE-2024-35328
was published
Jun 13, 2024
A vulnerability has been identified in SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions <...
Moderate
Unreviewed
CVE-2023-50763
was published
Jun 11, 2024
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when...
High
Unreviewed
CVE-2024-36732
was published
Jun 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
batman-adv: Avoid infinite...
Moderate
Unreviewed
CVE-2024-35982
was published
May 20, 2024
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3...
Moderate
Unreviewed
CVE-2024-4854
was published
May 14, 2024
Open Networking Foundation SD-RAN ONOS onos-ric-sdk-go 0.8.12 allows infinite repetition of the...
Moderate
Unreviewed
CVE-2023-52726
was published
Apr 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
fsdax: Fix infinite loop in...
Moderate
Unreviewed
CVE-2022-48635
was published
Apr 28, 2024
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA)...
High
Unreviewed
CVE-2024-20353
was published
Apr 24, 2024
Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite...
Moderate
Unreviewed
CVE-2024-2397
was published
Apr 12, 2024
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache NimBLE.
...
High
Unreviewed
CVE-2024-24746
was published
Apr 6, 2024
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-21408
was published
Mar 12, 2024
NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that...
High
Unreviewed
CVE-2024-1931
was published
Mar 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/fpu: Stop relying on...
Moderate
Unreviewed
CVE-2024-26603
was published
Feb 26, 2024
Certain WithSecure products allow a Denial of Service because the engine scanner can go into an...
High
Unreviewed
CVE-2024-27359
was published
Feb 26, 2024
An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume...
High
Unreviewed
CVE-2023-51890
was published
Jan 24, 2024
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop...
Critical
Unreviewed
CVE-2021-42143
was published
Jan 24, 2024
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN...
High
Unreviewed
CVE-2023-45233
was published
Jan 16, 2024
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown...
High
Unreviewed
CVE-2023-45232
was published
Jan 16, 2024
When calling bson_utf8_validate on some inputs a loop with an exit condition that cannot be...
Moderate
Unreviewed
CVE-2023-0437
was published
Jan 12, 2024
ProTip!
Advisories are also available from the
GraphQL API