GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,056

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,315 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Asymmetric Resource Consumption (Amplification) in Docker containers created by Wings Moderate

CVE-2021-32699 was published for github.com/pterodactyl/wings (Go) Jun 23, 2021

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed

CVE-2021-27383 was published May 24, 2022

Etherpad < 1.8.3 is affected by a missing lock check which could cause a denial of service.... High Unreviewed

CVE-2020-22785 was published May 24, 2022

A vulnerability in the handling of internal resources necessary to bring up a large number of... Moderate Unreviewed

CVE-2021-0224 was published May 24, 2022

EMQ X Broker versions prior to 4.2.8 are vulnerable to a denial of service attack as a result of... High Unreviewed

CVE-2021-33175 was published May 24, 2022

Mintty before 3.4.5 allows remote servers to cause a denial of service (Windows GUI hang) by... High Unreviewed

CVE-2021-28848 was published May 24, 2022

There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker... High Unreviewed

CVE-2021-22363 was published May 24, 2022

Unbounded connection acceptance leads to file handle exhaustion High

CVE-2021-21293 was published for org.http4s:blaze-core_2.11 (Maven) Feb 2, 2021

Unbounded connection acceptance in http4s-blaze-server High

CVE-2021-21294 was published for org.http4s:http4s-blaze-server_2.12 (Maven) Feb 2, 2021

tifig v0.2.2 was discovered to contain a heap-buffer overflow via __asan_memmove at /asan... Moderate Unreviewed

CVE-2022-36150 was published Aug 17, 2022

A denial-of-service vulnerability in the Mattermost Playbooks plugin allows an authenticated user... Moderate Unreviewed

CVE-2022-4019 was published Nov 23, 2022

Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12... Moderate Unreviewed

CVE-2021-22207 was published May 24, 2022

VerneMQ MQTT Broker versions prior to 1.12.0 are vulnerable to a denial of service attack as a... High Unreviewed

CVE-2021-33176 was published May 24, 2022

A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions... Moderate Unreviewed

CVE-2021-25666 was published May 24, 2022

There is a resource management error vulnerability in the verisions V500R001C60SPC500,... Moderate Unreviewed

CVE-2021-22360 was published May 24, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When... Moderate Unreviewed

CVE-2021-22210 was published May 24, 2022

Denial of service in Mattermost Moderate

CVE-2022-4045 was published for github.com/mattermost/mattermost-server (Go) Nov 23, 2022

Denial of service in Mattermost Moderate

CVE-2022-4044 was published for github.com/mattermost/mattermost-server (Go) Nov 23, 2022

tifig v0.2.2 was discovered to contain a resource allocation issue via operator new(unsigned long... Moderate Unreviewed

CVE-2022-36155 was published Aug 17, 2022

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via... Moderate Unreviewed

CVE-2022-35113 was published Aug 17, 2022

An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are... Moderate Unreviewed

CVE-2020-29568 was published May 24, 2022

A stack overflow in pupnp 1.16.1 can cause the denial of service through the Parser_parseDocument... High Unreviewed

CVE-2021-28302 was published May 24, 2022

An unauthenticated specially crafted packet sent by an attacker over the network will cause a... High Unreviewed

CVE-2020-24685 was published May 24, 2022

IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by... Moderate Unreviewed

CVE-2022-22488 was published Dec 12, 2022

A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system... Moderate Unreviewed

CVE-2020-25650 was published May 24, 2022

Previous 1…49…53 Next

Previous 1 2 … 47 48 49 50 51 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,315 advisories