Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

485 advisories

Loading
When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol ... High Unreviewed
CVE-2026-39455 was published May 13, 2026
An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS... High Unreviewed
CVE-2026-35227 was published May 12, 2026
In the Linux kernel, the following vulnerability has been resolved: dm: remove fake timeout to... Moderate Unreviewed
CVE-2026-43314 was published May 8, 2026
Netty epoll transport denial of service via RST on half-closed TCP connection High
CVE-2026-42577 was published for io.netty:netty-transport-native-epoll (Maven) May 6, 2026
Stormpx Credited to Stormpx, dzaisban, normanmaurer, SeBBBe, pjfanning, jneira-stratio, mpenttila, and chrisvest dzaisban dzaisban
normanmaurer normanmaurer SeBBBe SeBBBe pjfanning pjfanning jneira-stratio jneira-stratio mpenttila mpenttila chrisvest chrisvest
In the Linux kernel, the following vulnerability has been resolved: media: cx88: Add missing... Moderate Unreviewed
CVE-2026-43257 was published May 6, 2026
In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcm_loop:... Moderate Unreviewed
CVE-2026-43054 was published May 1, 2026
A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by... High Unreviewed
CVE-2026-3104 was published Mar 25, 2026
Due to a programming error, blocklistd leaks a socket descriptor for each adverse event report it... High Unreviewed
CVE-2026-2261 was published Mar 9, 2026
A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall... High Unreviewed
CVE-2026-20082 was published Mar 4, 2026
Multer vulnerable to Denial of Service via resource exhaustion High
CVE-2026-2359 was published for multer (npm) Mar 1, 2026
ctcpip Credited to ctcpip, nawin23, UlisesGascon, sheplu, and bjohansebas nawin23 nawin23
UlisesGascon UlisesGascon sheplu sheplu bjohansebas bjohansebas
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Free sp in... Moderate Unreviewed
CVE-2025-71232 was published Feb 18, 2026
In the Linux kernel, the following vulnerability has been resolved: mm/slab: Add... Moderate Unreviewed
CVE-2026-23219 was published Feb 18, 2026
Hibernate Reactive Vulnerable to DoS via Connection Pool Exhaustion Moderate
CVE-2025-14969 was published for org.hibernate.reactive:hibernate-reactive-core (Maven) Jan 26, 2026
NiceGUI has Redis connection leak via tab storage causes service degradation Moderate
CVE-2026-21874 was published for nicegui (pip) Jan 8, 2026
yudelevi Credited to yudelevi and evnchn evnchn evnchn
thread-amount Vulnerable to Resource Exhaustion (Memory and Handle Leaks) on Windows and macOS High
CVE-2025-65947 was published for thread-amount (Rust) Nov 21, 2025
jzeuzs Credited to jzeuzs
Missing Release of Resource after Effective Lifetime (CWE-772) in the T21 Reader allows an... Low Unreviewed
CVE-2025-64734 was published Nov 18, 2025
A health check port on Zscaler Client Connector on Windows, versions 4.6 < 4.6.0.216 and 4.7 < 4... Moderate Unreviewed
CVE-2025-54983 was published Nov 12, 2025
IBM MQ 9.1, 9.2, 9.3, 9.4 LTS and 9.3, 9.4 CD is vulnerable to a denial of service, caused by... High Unreviewed
CVE-2025-36128 was published Oct 16, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hif_usb: clean... Moderate Unreviewed
CVE-2023-53199 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix calltrace... Moderate Unreviewed
CVE-2023-53152 was published Sep 15, 2025
A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5... High Unreviewed
CVE-2025-30256 was published Aug 20, 2025
A flaw was found in the Linux kernel's ksmbd component. A memory leak can occur if a client sends... Moderate Unreviewed
CVE-2023-32255 was published Aug 3, 2025
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1... Moderate Unreviewed
CVE-2025-36071 was published Jul 29, 2025
Missing Release of Resource after Effective Lifetime (CWE-772) in the Gallagher T-Series Reader... Moderate Unreviewed
CVE-2025-44003 was published Jul 10, 2025
In the Linux kernel, the following vulnerability has been resolved: tools/power turbostat: Fix... High Unreviewed
CVE-2022-50189 was published Jun 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database