Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,094 advisories

Loading
A vulnerability in Juniper Networks Junos OS ACX500 Series, ACX4000 Series, may allow an attacker... High Unreviewed
CVE-2021-0233 was published May 24, 2022
A vulnerability in Juniper Networks Junos OS running on the ACX5448 and ACX710 platforms may... Moderate Unreviewed
CVE-2021-0216 was published May 24, 2022
An uncontrolled resource consumption vulnerability in Message Queue Telemetry Transport (MQTT)... Moderate Unreviewed
CVE-2021-0229 was published May 24, 2022
IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local... High Unreviewed
CVE-2021-20501 was published May 24, 2022
OMICRON StationGuard before 1.10 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2021-30464 was published May 24, 2022
There's a flaw in the BFD library of binutils in versions before 2.36. An attacker who supplies a... High Unreviewed
CVE-2021-3487 was published May 24, 2022
A ZTE product has a configuration error vulnerability. Because a certain port is open by default,... Moderate Unreviewed
CVE-2021-21728 was published May 24, 2022
Dell System Update (DSU) 1.9 and earlier versions contain a denial of service vulnerability. A... Moderate Unreviewed
CVE-2021-21529 was published May 24, 2022
kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10... High Unreviewed
CVE-2021-28994 was published May 24, 2022
An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in... Moderate Unreviewed
CVE-2021-20234 was published May 24, 2022
Potential DoS was identified in gitlab-shell in GitLab CE/EE version 12.6.0 or above, which... Moderate Unreviewed
CVE-2021-22177 was published May 24, 2022
There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker... Moderate Unreviewed
CVE-2021-3479 was published May 24, 2022
There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An... Moderate Unreviewed
CVE-2021-3478 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when... High Unreviewed
CVE-2021-20216 was published May 24, 2022
A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated... High Unreviewed
CVE-2021-1460 was published May 24, 2022
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on... Moderate Unreviewed
CVE-2021-28971 was published May 24, 2022
Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU... High Unreviewed
CVE-2021-28089 was published May 24, 2022
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause... High Unreviewed
CVE-2020-27827 was published May 24, 2022
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user with... Moderate Unreviewed
CVE-2020-4890 was published May 24, 2022
A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in... Moderate Unreviewed
CVE-2021-20265 was published May 24, 2022
The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43... Moderate Unreviewed
CVE-2020-35233 was published May 24, 2022
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less... Moderate Unreviewed
CVE-2021-28039 was published May 24, 2022
Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to a denial of service attack... High Unreviewed
CVE-2021-22883 was published May 24, 2022
Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a... Moderate Unreviewed
CVE-2021-25252 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database