Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology... Moderate Unreviewed
CVE-2017-12076 was published May 17, 2022
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology... Moderate Unreviewed
CVE-2017-12077 was published May 17, 2022
The qemu implementation in libvirt before 1.3.0 and Xen allows local guest OS users to cause a... Moderate Unreviewed
CVE-2014-3672 was published May 17, 2022
openhpi/Makefile.am in OpenHPI before 3.6.0 uses world-writable permissions for /var/lib/openhpi... Moderate Unreviewed
CVE-2015-3248 was published May 17, 2022
The OpenBSD qsort() function is recursive, and not randomized, an attacker can construct a... Moderate Unreviewed
CVE-2017-1000373 was published May 17, 2022
An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest OS users to cause a denial... Moderate Unreviewed
CVE-2017-15596 was published May 17, 2022
Red Hat CloudForms 3 Management Engine (CFME) allows remote authenticated users to cause a denial... Moderate Unreviewed
CVE-2014-7813 was published May 17, 2022
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM,... Moderate Unreviewed
CVE-2017-6161 was published May 17, 2022
Apache Tika vulnerable to uncontrolled memory consumption Moderate
CVE-2022-25169 was published for org.apache.tika:tika (Maven) May 17, 2022
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to a Denial of Service (DoS)... Moderate Unreviewed
CVE-2017-15529 was published May 14, 2022
fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a... Moderate Unreviewed
CVE-2016-6213 was published May 14, 2022
Multiple memory leaks in error paths in fs/xfs/xfs_attr_list.c in the Linux kernel before 4.5.1... Moderate Unreviewed
CVE-2016-9685 was published May 14, 2022
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function... Moderate Unreviewed
CVE-2018-6352 was published May 14, 2022
Huawei Smartphones with software LON-L29DC721B186 have a denial of service vulnerability. An... Moderate Unreviewed
CVE-2017-15345 was published May 14, 2022
Huawei DP300 V500R002C00, Secospace USG6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50,... Moderate Unreviewed
CVE-2017-17166 was published May 14, 2022
The Supervisor in Sandstorm doesn't set and enforce the resource limits of a process. This allows... Moderate Unreviewed
CVE-2017-6198 was published May 14, 2022
In some circumstances, on F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, any 11.6.x or 11.5... Moderate Unreviewed
CVE-2018-5501 was published May 14, 2022
On F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, or 11.6.1 - 11.6.2, every Multipath TCP ... Moderate Unreviewed
CVE-2018-5500 was published May 14, 2022
Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, V500R001C30, Secospace USG6500... Moderate Unreviewed
CVE-2017-15323 was published May 14, 2022
The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking... Moderate Unreviewed
CVE-2016-6307 was published May 14, 2022
Cloud Foundry Garden-runC, versions prior to 1.13.0, does not correctly enforce disc quotas for... Moderate Unreviewed
CVE-2018-1277 was published May 14, 2022
BIRD Internet Routing Daemon before 1.6.4 allows local users to cause a denial of service (stack... Moderate Unreviewed
CVE-2018-12066 was published May 14, 2022
In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of... Moderate Unreviewed
CVE-2018-13251 was published May 14, 2022
An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stack consumption has been... Moderate Unreviewed
CVE-2018-15671 was published May 14, 2022
When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of... Moderate Unreviewed
CVE-2017-10800 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database