Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,679
Erlang
34
GitHub Actions
26
Go
2,268
Maven
5,000+
npm
3,923
NuGet
705
pip
3,686
Pub
12
RubyGems
916
Rust
944
Swift
38
Unreviewed advisories
All unreviewed
5,000+

15 advisories

Loading
Apache Tomcat Denial of Service via invalid HTTP priority header Moderate
CVE-2025-31650 was published for org.apache.tomcat:tomcat-coyote (Maven) Apr 28, 2025
tRPC 11 WebSocket DoS Vulnerability High
CVE-2025-43855 was published for @trpc/server (npm) Apr 24, 2025
lukechilds
Pleezer resource exhaustion through uncollected hook script processes Moderate
CVE-2025-32439 was published for pleezer (Rust) Apr 14, 2025
MadMarcsen
Envoy crashes when HTTP ext_proc processes local replies Moderate
CVE-2025-30157 was published for github.com/envoyproxy/envoy (Go) Mar 21, 2025
botengyao yanjunxiang-google
phlax
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers... Moderate Unreviewed
CVE-2022-3707 was published Mar 7, 2023
Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service Moderate
CVE-2024-12289 was published for github.com/hashicorp/boundary (Go) Dec 13, 2024
rdiffweb vulnerable to Improper Cleanup on Thrown Exception Moderate
CVE-2022-3301 was published for rdiffweb (pip) Sep 27, 2022
gougucms v4.08.18 was discovered to contain a password reset poisoning vulnerability which allows... High Unreviewed
CVE-2023-46393 was published Oct 27, 2023
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a... High Unreviewed
CVE-2022-4744 was published Jul 6, 2023
A flaw was found in cri-o, as a result of all pod-related processes being placed in the same... Moderate Unreviewed
CVE-2019-14891 was published May 24, 2022
A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP)... Moderate Unreviewed
CVE-2024-20354 was published Mar 27, 2024
Improper cleanup vulnerability in exceptions thrown in FireEye Endpoint Security, affecting... Moderate Unreviewed
CVE-2024-0316 was published Jan 15, 2024
ordered_float:NotNan may contain NaN after panic in assignment operators Moderate
CVE-2020-35923 was published for ordered-float (Rust) Aug 25, 2021
saethlin tdunlap607
A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read... Moderate Unreviewed
CVE-2020-14304 was published May 24, 2022
A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel... Moderate Unreviewed
CVE-2017-15127 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database