Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

226 advisories

Loading
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong... Moderate Unreviewed
CVE-2023-3255 was published Sep 13, 2023
A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software... Moderate Unreviewed
CVE-2023-20200 was published Aug 23, 2023
An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to... Moderate Unreviewed
CVE-2022-40090 was published Aug 22, 2023
An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause... Moderate Unreviewed
CVE-2020-36023 was published Aug 11, 2023
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local... Moderate Unreviewed
CVE-2020-24221 was published Aug 11, 2023
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The... Moderate Unreviewed
CVE-2023-4010 was published Jul 31, 2023
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at... Moderate Unreviewed
CVE-2023-37748 was published Jul 19, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which... Moderate Unreviewed
CVE-2021-33294 was published Jul 18, 2023
A vulnerability in the Administrative XML Web Service (AXL) API of Cisco Unified Communications... Moderate Unreviewed
CVE-2023-20116 was published Jun 28, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0... Moderate Unreviewed
CVE-2023-33305 was published Jun 13, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of... Moderate Unreviewed
CVE-2023-2952 was published May 31, 2023
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop. Moderate Unreviewed
CVE-2023-30300 was published May 3, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20999 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20997 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20996 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20998 was published Mar 24, 2023
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1... Moderate Unreviewed
CVE-2022-4345 was published Jan 12, 2023
In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an... Moderate Unreviewed
CVE-2022-20476 was published Dec 13, 2022
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the... Moderate Unreviewed
CVE-2022-4104 was published Nov 28, 2022
An external attacker is able to send a specially crafted email (with many recipients) and trigger... Moderate Unreviewed
CVE-2022-39052 was published Oct 17, 2022
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19... Moderate Unreviewed
CVE-2022-42721 was published Oct 14, 2022
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other... Moderate Unreviewed
CVE-2014-0148 was published Sep 30, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively... Moderate Unreviewed
CVE-2022-31628 was published Sep 29, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... Moderate Unreviewed
CVE-2022-28886 was published Sep 25, 2022
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0... Moderate Unreviewed
CVE-2022-3190 was published Sep 14, 2022
ProTip! Advisories are also available from the GraphQL API