Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used with... Moderate Unreviewed
CVE-2011-3348 was published May 13, 2022
The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP... Moderate Unreviewed
CVE-2014-0118 was published May 13, 2022
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem.... Moderate Unreviewed
CVE-2019-3874 was published May 13, 2022
Uncontrolled Resource Consumption in Apache CXF Moderate
CVE-2014-0109 was published for org.apache.cxf:cxf-core (Maven) May 13, 2022
sunSUNQ
Credited to sunSUNQ
Uncontrolled Resource Consumption in Apache CXF Moderate
CVE-2014-0110 was published for org.apache.cxf:cxf-core (Maven) May 13, 2022
sunSUNQ
Credited to sunSUNQ
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to... Moderate Unreviewed
CVE-2018-17189 was published May 13, 2022
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the... Moderate Unreviewed
CVE-2012-0876 was published May 13, 2022
The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to... Moderate Unreviewed
CVE-2016-5403 was published May 13, 2022
Uncontrolled Resource Consumption in Apache Commons Compress Moderate
CVE-2012-2098 was published for org.apache.commons:commons-compress (Maven) May 13, 2022
MarkLee131
Credited to MarkLee131
A vulnerability in the IP next-hop index database in Junos OS 17.3R3 may allow a flood of ARP... Moderate Unreviewed
CVE-2018-0063 was published May 13, 2022
A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated... Moderate Unreviewed
CVE-2018-14660 was published May 13, 2022
The Gluster file system through versions 4.1.4 and 3.1.2 is vulnerable to a denial of service... Moderate Unreviewed
CVE-2018-14659 was published May 13, 2022
The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME... Moderate Unreviewed
CVE-2016-0747 was published May 13, 2022
** DISPUTED ** The Schneider Electric M340 PLC modules allow remote attackers to cause a denial... Moderate Unreviewed
CVE-2013-2763 was published May 13, 2022
An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels,... Moderate Unreviewed
CVE-2016-8367 was published May 13, 2022
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might... Moderate Unreviewed
CVE-2018-16845 was published May 13, 2022
RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition... Moderate Unreviewed
CVE-2018-11056 was published May 13, 2022
A remote denial-of-service vulnerability exists in the way the Nouveau Display Driver (the... Moderate Unreviewed
CVE-2018-3979 was published May 13, 2022
An exploitable denial of service exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file... Moderate Unreviewed
CVE-2016-9039 was published May 13, 2022
An exploitable denial of service exists in the the Joyent SmartOS OS 20161110T013148Z Hyprlofs... Moderate Unreviewed
CVE-2016-9040 was published May 13, 2022
Uncontrolled resource consumption in the Linux kernel drivers for Intel(R) SGX may allow an... Moderate Unreviewed
CVE-2021-33135 was published May 13, 2022
A vulnerability has been identified in Desigo DXR2 (All versions < V01.21.142.5-22), Desigo PXC3 ... Moderate Unreviewed
CVE-2022-24040 was published May 11, 2022
An issue has been discovered in GitLab affecting all versions starting from 12.10 before 14.8.6,... Moderate Unreviewed
CVE-2022-1431 was published May 11, 2022
Windows Hyper-V Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-22713 was published May 11, 2022
Windows WLAN AutoConfig Service Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-29121 was published May 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database