Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,669
Erlang
34
GitHub Actions
26
Go
2,261
Maven
5,000+
npm
3,910
NuGet
704
pip
3,680
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14 advisories

Loading
tRPC 11 WebSocket DoS Vulnerability High
CVE-2025-43855 was published for @trpc/server (npm) Apr 24, 2025
lukechilds
Pleezer resource exhaustion through uncollected hook script processes Moderate
CVE-2025-32439 was published for pleezer (Rust) Apr 14, 2025
MadMarcsen
Envoy crashes when HTTP ext_proc processes local replies Moderate
CVE-2025-30157 was published for github.com/envoyproxy/envoy (Go) Mar 21, 2025
botengyao yanjunxiang-google
phlax
Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service Moderate
CVE-2024-12289 was published for github.com/hashicorp/boundary (Go) Dec 13, 2024
A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP)... Moderate Unreviewed
CVE-2024-20354 was published Mar 27, 2024
Improper cleanup vulnerability in exceptions thrown in FireEye Endpoint Security, affecting... Moderate Unreviewed
CVE-2024-0316 was published Jan 15, 2024
gougucms v4.08.18 was discovered to contain a password reset poisoning vulnerability which allows... High Unreviewed
CVE-2023-46393 was published Oct 27, 2023
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a... High Unreviewed
CVE-2022-4744 was published Jul 6, 2023
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers... Moderate Unreviewed
CVE-2022-3707 was published Mar 7, 2023
rdiffweb vulnerable to Improper Cleanup on Thrown Exception Moderate
CVE-2022-3301 was published for rdiffweb (pip) Sep 27, 2022
A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read... Moderate Unreviewed
CVE-2020-14304 was published May 24, 2022
A flaw was found in cri-o, as a result of all pod-related processes being placed in the same... Moderate Unreviewed
CVE-2019-14891 was published May 24, 2022
A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel... Moderate Unreviewed
CVE-2017-15127 was published May 13, 2022
ordered_float:NotNan may contain NaN after panic in assignment operators Moderate
CVE-2020-35923 was published for ordered-float (Rust) Aug 25, 2021
saethlin tdunlap607
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database