GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
226 advisories
Filter by severity
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong...
Moderate
Unreviewed
CVE-2023-3255
was published
Sep 13, 2023
A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software...
Moderate
Unreviewed
CVE-2023-20200
was published
Aug 23, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to...
Moderate
Unreviewed
CVE-2022-40090
was published
Aug 22, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36023
was published
Aug 11, 2023
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local...
Moderate
Unreviewed
CVE-2020-24221
was published
Aug 11, 2023
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The...
Moderate
Unreviewed
CVE-2023-4010
was published
Jul 31, 2023
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at...
Moderate
Unreviewed
CVE-2023-37748
was published
Jul 19, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which...
Moderate
Unreviewed
CVE-2021-33294
was published
Jul 18, 2023
A vulnerability in the Administrative XML Web Service (AXL) API of Cisco Unified Communications...
Moderate
Unreviewed
CVE-2023-20116
was published
Jun 28, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0...
Moderate
Unreviewed
CVE-2023-33305
was published
Jun 13, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of...
Moderate
Unreviewed
CVE-2023-2952
was published
May 31, 2023
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop.
Moderate
Unreviewed
CVE-2023-30300
was published
May 3, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to...
Moderate
Unreviewed
CVE-2023-20999
was published
Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to...
Moderate
Unreviewed
CVE-2023-20997
was published
Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to...
Moderate
Unreviewed
CVE-2023-20996
was published
Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to...
Moderate
Unreviewed
CVE-2023-20998
was published
Mar 24, 2023
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1...
Moderate
Unreviewed
CVE-2022-4345
was published
Jan 12, 2023
In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an...
Moderate
Unreviewed
CVE-2022-20476
was published
Dec 13, 2022
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the...
Moderate
Unreviewed
CVE-2022-4104
was published
Nov 28, 2022
An external attacker is able to send a specially crafted email (with many recipients) and trigger...
Moderate
Unreviewed
CVE-2022-39052
was published
Oct 17, 2022
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19...
Moderate
Unreviewed
CVE-2022-42721
was published
Oct 14, 2022
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other...
Moderate
Unreviewed
CVE-2014-0148
was published
Sep 30, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively...
Moderate
Unreviewed
CVE-2022-31628
was published
Sep 29, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where...
Moderate
Unreviewed
CVE-2022-28886
was published
Sep 25, 2022
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0...
Moderate
Unreviewed
CVE-2022-3190
was published
Sep 14, 2022
ProTip!
Advisories are also available from the
GraphQL API