Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,297
Maven
5,000+
npm
3,942
NuGet
708
pip
3,711
Pub
12
RubyGems
920
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,775 advisories

Loading
Ackites KillWxapkg Zip Bomb Resource Exhaustion Low
CVE-2025-5031 was published for github.com/Ackites/KillWxapkg (Go) May 21, 2025
VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain... Moderate Unreviewed
CVE-2025-41227 was published May 20, 2025
VMware ESXi contains a denial-of-service vulnerability that occurs when performing a guest... Moderate Unreviewed
CVE-2025-41226 was published May 20, 2025
Meteor Affected By Inefficient Regular Expression Complexity Moderate
CVE-2025-4727 was published for meteor (npm) May 16, 2025
Dell PowerScale OneFS, versions 9.4.0.0 through 9.9.0.0, contains an uncontrolled resource... High Unreviewed
CVE-2025-26481 was published May 15, 2025
Dell PowerScale InsightIQ, version 5.2, contains an uncontrolled resource consumption... Moderate Unreviewed
CVE-2025-30476 was published May 15, 2025
An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed
CVE-2025-26783 was published May 14, 2025
In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection... High Unreviewed
CVE-2025-3600 was published May 14, 2025
Uncontrolled resource consumption for some OpenVINO™ model server software maintained by Intel(R)... High Unreviewed
CVE-2025-22892 was published May 13, 2025
Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Moderate Unreviewed
CVE-2025-20084 was published May 13, 2025
Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Low Unreviewed
CVE-2025-20616 was published May 13, 2025
Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Moderate Unreviewed
CVE-2025-20057 was published May 13, 2025
Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-29957 was published May 13, 2025
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows... Moderate Unreviewed
CVE-2025-29954 was published May 13, 2025
Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized... High Unreviewed
CVE-2025-26677 was published May 13, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.6, tvOS 18... Moderate Unreviewed
CVE-2025-31245 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in watchOS 11.5,... Moderate Unreviewed
CVE-2025-31251 was published May 13, 2025
A logic issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5,... Moderate Unreviewed
CVE-2025-31226 was published May 13, 2025
The issue was addressed with improved UI. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and... High Unreviewed
CVE-2025-31210 was published May 13, 2025
A vulnerability classified as problematic was found in JeecgBoot up to 3.8.0. This vulnerability... Moderate Unreviewed
CVE-2025-4533 was published May 11, 2025
LlamaIndex Vulnerable to Denial of Service (DoS) High
CVE-2025-1752 was published for llama-index (pip) May 10, 2025
Apache Commons Configuration Uncontrolled Resource Consumption Low
CVE-2025-46392 was published for commons-configuration:commons-configuration (Maven) May 9, 2025
Eclipse Jetty HTTP/2 client can force the server to allocate a humongous byte buffer that may lead to OoM and subsequently the JVM to exit High
CVE-2025-1948 was published for org.eclipse.jetty.http2:jetty-http2-common (Maven) May 8, 2025
bjorncs
Rack has an Unbounded-Parameter DoS in Rack::QueryParser High
CVE-2025-46727 was published for rack (RubyGems) May 8, 2025
TaiPhung217 jeremyevans
ioquatix
A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an... High Unreviewed
CVE-2025-20162 was published May 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database