Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,094 advisories

Loading
Multiple vulnerabilities in the implementation of the Cisco Discovery Protocol and Link Layer... Moderate Unreviewed
CVE-2021-1563 was published May 24, 2022
Multiple vulnerabilities in the implementation of the Cisco Discovery Protocol and Link Layer... Moderate Unreviewed
CVE-2021-1564 was published May 24, 2022
MobaXterm before 21.0 allows remote servers to cause a denial of service (Windows GUI hang) via... High Unreviewed
CVE-2021-28847 was published May 24, 2022
A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote... High Unreviewed
CVE-2021-20201 was published May 24, 2022
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in... High Unreviewed
CVE-2021-20237 was published May 24, 2022
A malicious container image can consume an unbounded amount of memory when being pulled to a... Moderate Unreviewed
CVE-2020-1702 was published May 24, 2022
A flaw was found in Ansible Tower when running Openshift. Tower runs a memcached, which is... Moderate Unreviewed
CVE-2020-10697 was published May 24, 2022
A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads... Moderate Unreviewed
CVE-2020-25673 was published May 24, 2022
It has been discovered that redhat-certification does not properly limit the number of recursive... High Unreviewed
CVE-2018-10868 was published May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an... High Unreviewed
CVE-2020-36332 was published May 24, 2022
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email... High Unreviewed
CVE-2021-32816 was published May 24, 2022
Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation... High Unreviewed
CVE-2021-32920 was published May 24, 2022
An issue was discovered in Prosody before 0.11.9. Default settings are susceptible to remote... High Unreviewed
CVE-2021-32918 was published May 24, 2022
Kibana versions before 7.12.1 contain a denial of service vulnerability was found in the webhook... Moderate Unreviewed
CVE-2021-22139 was published May 24, 2022
A vulnerability has been identified in SIMATIC NET CP 343-1 Advanced (incl. SIPLUS variants) (All... High Unreviewed
CVE-2020-25242 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-27385 was published May 24, 2022
In JetBrains IntelliJ IDEA before 2021.1, DoS was possible because of unbounded resource allocation. High Unreviewed
CVE-2021-30504 was published May 24, 2022
The Integration Builder Framework of SAP Process Integration versions - 7.10, 7.11, 7.20, 7.30, 7... Moderate Unreviewed
CVE-2021-27617 was published May 24, 2022
On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13... High Unreviewed
CVE-2021-23011 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote... High Unreviewed
CVE-2021-1275 was published May 24, 2022
Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in... High Unreviewed
CVE-2021-28665 was published May 24, 2022
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or... High Unreviewed
CVE-2020-28944 was published May 24, 2022
A vulnerability in filesystem usage management for Cisco Firepower Device Manager (FDM) Software... Moderate Unreviewed
CVE-2021-1489 was published May 24, 2022
When a MX Series is configured as a Broadband Network Gateway (BNG) based on Layer 2 Tunneling... Moderate Unreviewed
CVE-2021-0238 was published May 24, 2022
On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any... High Unreviewed
CVE-2021-0230 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database