Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,259
NuGet
760
pip
4,052
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,305 advisories

Loading
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix... High Unreviewed
CVE-2021-22919 was published May 24, 2022
Liferay Portal and Liferay DXP vulnerable to email spam via lack of flagging rate Moderate
CVE-2021-33320 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19463 was published May 24, 2022
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19464 was published May 24, 2022
basic/unit-name.c in systemd 220 through 248 has a Memory Allocation with an Excessive Size Value... Moderate Unreviewed
CVE-2021-33910 was published May 24, 2022
IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IBM Secure Proxy 3.4.3.2, 6.0... High Unreviewed
CVE-2021-29725 was published May 24, 2022
An uncontrolled resource consumption vulnerability in Juniper Networks Junos OS on QFX5000 Series... High Unreviewed
CVE-2021-0285 was published May 24, 2022
A vulnerability has been identified in RWG1.M12 (All versions < V1.16.16), RWG1.M12D (All... Moderate Unreviewed
CVE-2021-25671 was published May 24, 2022
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard... High Unreviewed
CVE-2020-28400 was published May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as... Moderate Unreviewed
CVE-2020-28200 was published May 24, 2022
Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 in all versions/variants are affected... High Unreviewed
CVE-2021-33541 was published May 24, 2022
There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker... High Unreviewed
CVE-2021-22363 was published May 24, 2022
VerneMQ MQTT Broker versions prior to 1.12.0 are vulnerable to a denial of service attack as a... High Unreviewed
CVE-2021-33176 was published May 24, 2022
EMQ X Broker versions prior to 4.2.8 are vulnerable to a denial of service attack as a result of... High Unreviewed
CVE-2021-33175 was published May 24, 2022
Mintty before 3.4.5 allows remote servers to cause a denial of service (Windows GUI hang) by... High Unreviewed
CVE-2021-28848 was published May 24, 2022
A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to... Moderate Unreviewed
CVE-2020-14336 was published May 24, 2022
A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined... Moderate Unreviewed
CVE-2021-3527 was published May 24, 2022
There is a resource management error vulnerability in the verisions V500R001C60SPC500,... Moderate Unreviewed
CVE-2021-22360 was published May 24, 2022
On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker... High Unreviewed
CVE-2021-21000 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-27383 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When... Moderate Unreviewed
CVE-2021-22210 was published May 24, 2022
Etherpad < 1.8.3 is affected by a missing lock check which could cause a denial of service.... High Unreviewed
CVE-2020-22785 was published May 24, 2022
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12... Moderate Unreviewed
CVE-2021-22207 was published May 24, 2022
A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300... Moderate Unreviewed
CVE-2021-0242 was published May 24, 2022
A vulnerability in the handling of internal resources necessary to bring up a large number of... Moderate Unreviewed
CVE-2021-0224 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database