GitHub Security Advisories (GHSA) are authoritative notices for vulnerable open-source packages and ecosystems (for example npm, PyPI, or Maven), usually with a linked CVE. Use the search box to find a GHSA or CVE, narrow by ecosystem or severity, or match phrases in the summary.
| GHSA | CVE | Severity | Type | Summary | Published |
|---|---|---|---|---|---|
| GHSA-x2cv-wq6v-3cc9 | CVE-2026-14896 | medium | unreviewed | HashiCorp Nomad and Nomad Enterprise are vulnerable to a cross-namespace authorization bypass in... | 2026-07-08 21:30:30 UTC |
| GHSA-w5mx-46xm-8f3v | CVE-2026-15164 | medium | unreviewed | Crash in ciscodump 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service | 2026-07-08 21:30:30 UTC |
| GHSA-rwjf-g383-jc9c | CVE-2026-8651 | low | unreviewed | Limited authentication bypass by spoofing vulnerability in Progress MOVEit Transfer (HTTPS module... | 2026-07-08 21:30:30 UTC |
| GHSA-rgmm-652r-crf4 | CVE-2026-0288 | high | unreviewed | Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of... | 2026-07-08 21:30:30 UTC |
| GHSA-qx92-wm5h-2pg7 | CVE-2026-15167 | high | unreviewed | DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of... | 2026-07-08 21:30:30 UTC |
| GHSA-qq69-vqh3-gr8r | CVE-2026-15173 | medium | unreviewed | pcapng file parser crash in Wireshark 4.6.0 to 4.6.6 allows denial of service | 2026-07-08 21:30:30 UTC |
| GHSA-qp89-5wp8-rj83 | CVE-2026-8650 | medium | unreviewed | Relative path traversal vulnerability in Progress MOVEit Transfer (Admin Settings module). This... | 2026-07-08 21:30:30 UTC |
| GHSA-qfqq-fmmm-p2r3 | CVE-2026-13151 | low | unreviewed | GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.11.7, 19... | 2026-07-08 21:30:30 UTC |
| GHSA-mhr8-wccg-2q8g | CVE-2026-11827 | medium | unreviewed | GitLab has remediated an issue in GitLab EE affecting all versions from 9.5 before 18.11.7, 19.0... | 2026-07-08 21:30:30 UTC |
| GHSA-m49f-rvv4-r4rv | CVE-2026-13320 | high | unreviewed | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7,... | 2026-07-08 21:30:30 UTC |
| GHSA-hfrj-29vh-pcf2 | CVE-2026-15170 | medium | unreviewed | Z39.50 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of... | 2026-07-08 21:30:30 UTC |
| GHSA-h9wc-3j4p-q5g3 | CVE-2026-15166 | medium | unreviewed | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows... | 2026-07-08 21:30:30 UTC |
| GHSA-h5pw-h3j7-cj7f | CVE-2025-12506 | low | unreviewed | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.5 before 18.11.7,... | 2026-07-08 21:30:30 UTC |
| GHSA-gqgc-f2j4-fxx4 | CVE-2026-15171 | medium | unreviewed | SSH protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of... | 2026-07-08 21:30:30 UTC |
| GHSA-g7h5-mc2v-rvpm | CVE-2026-8801 | low | unreviewed | Path equivalence: vulnerability in Progress MOVEit Transfer (File Upload modules). This issue... | 2026-07-08 21:30:30 UTC |
| GHSA-9gc8-6grc-r8pc | CVE-2026-15169 | medium | unreviewed | UMTS FP protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of... | 2026-07-08 21:30:30 UTC |
| GHSA-5g65-rmxf-rgj6 | CVE-2026-60104 | high | unreviewed | Bitwarden Server before 2026.6.0 does not verify that the email in a POST /auth-requests/admin... | 2026-07-08 21:30:30 UTC |
| GHSA-4844-25m4-j7hc | CVE-2026-8800 | low | unreviewed | Incorrect Authorization vulnerability in Progress MOVEit Transfer (Audit User module). This... | 2026-07-08 21:30:30 UTC |
| GHSA-45fx-qq48-m87m | CVE-2026-15172 | medium | unreviewed | FMP/NOTIFY protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial... | 2026-07-08 21:30:30 UTC |
| GHSA-3qvj-9wrj-3gpm | CVE-2026-15163 | medium | unreviewed | Multiple protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allow... | 2026-07-08 21:30:30 UTC |