Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
37
Go
2,526
Maven
5,000+
npm
4,189
NuGet
742
pip
3,968
Pub
12
RubyGems
947
Rust
1,030
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,237 advisories

Loading
There is a resource management error vulnerability in the verisions V500R001C60SPC500,... Moderate Unreviewed
CVE-2021-22360 was published May 24, 2022
A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions... Moderate Unreviewed
CVE-2021-25666 was published May 24, 2022
VerneMQ MQTT Broker versions prior to 1.12.0 are vulnerable to a denial of service attack as a... High Unreviewed
CVE-2021-33176 was published May 24, 2022
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12... Moderate Unreviewed
CVE-2021-22207 was published May 24, 2022
A denial-of-service vulnerability in the Mattermost Playbooks plugin allows an authenticated user... Moderate Unreviewed
CVE-2022-4019 was published Nov 23, 2022
tifig v0.2.2 was discovered to contain a heap-buffer overflow via __asan_memmove at /asan... Moderate Unreviewed
CVE-2022-36150 was published Aug 17, 2022
Unbounded connection acceptance leads to file handle exhaustion High
CVE-2021-21293 was published for org.http4s:blaze-core_2.11 (Maven) Feb 2, 2021
Unbounded connection acceptance in http4s-blaze-server High
CVE-2021-21294 was published for org.http4s:http4s-blaze-server_2.12 (Maven) Feb 2, 2021
There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker... High Unreviewed
CVE-2021-22363 was published May 24, 2022
Mintty before 3.4.5 allows remote servers to cause a denial of service (Windows GUI hang) by... High Unreviewed
CVE-2021-28848 was published May 24, 2022
EMQ X Broker versions prior to 4.2.8 are vulnerable to a denial of service attack as a result of... High Unreviewed
CVE-2021-33175 was published May 24, 2022
A vulnerability in the handling of internal resources necessary to bring up a large number of... Moderate Unreviewed
CVE-2021-0224 was published May 24, 2022
Etherpad < 1.8.3 is affected by a missing lock check which could cause a denial of service.... High Unreviewed
CVE-2020-22785 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-27383 was published May 24, 2022
Asymmetric Resource Consumption (Amplification) in Docker containers created by Wings Moderate
CVE-2021-32699 was published for github.com/pterodactyl/wings (Go) Jun 23, 2021
Insufficient size checks in ws High
CVE-2020-35896 was published for ws (Rust) Aug 25, 2021
The package open62541/open62541 before 1.2.5, from 1.3-rc1 and before 1.3.1 are vulnerable to... High Unreviewed
CVE-2022-25761 was published Aug 24, 2022
A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP... High Unreviewed
CVE-2022-22278 was published Apr 28, 2022
A lack of rate limiting in the 'forgot password' feature of Zammad v5.1.0 allows attackers to... High Unreviewed
CVE-2022-29701 was published Apr 28, 2022
angular vulnerable to regular expression denial of service (ReDoS) Moderate
CVE-2022-25844 was published for angular (npm) May 3, 2022
Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 in all versions/variants are affected... High Unreviewed
CVE-2021-33541 was published May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as... Moderate Unreviewed
CVE-2020-28200 was published May 24, 2022
A vulnerability has been identified in RWG1.M12 (All versions < V1.16.16), RWG1.M12D (All... Moderate Unreviewed
CVE-2021-25671 was published May 24, 2022
IBM CICS TX 11.1 could allow a local user to cause a denial of service due to improper load... Moderate Unreviewed
CVE-2022-34308 was published Oct 7, 2022
An uncontrolled resource consumption vulnerability in Juniper Networks Junos OS on QFX5000 Series... High Unreviewed
CVE-2021-0285 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database