Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,093 advisories

Loading
A vulnerability in the system resource management of Cisco Elastic Services Controller (ESC)... High Unreviewed
CVE-2021-1312 was published May 24, 2022
rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of service (mailbox... Moderate Unreviewed
CVE-2021-3181 was published May 24, 2022
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption... Moderate Unreviewed
CVE-2021-25174 was published May 24, 2022
A regular expression denial of service issue has been discovered in NuGet API affecting all... Moderate Unreviewed
CVE-2021-22168 was published May 24, 2022
An attacker could cause a Prometheus denial of service in GitLab 13.7+ by sending an HTTP request... High Unreviewed
CVE-2021-22166 was published May 24, 2022
There is a resource management errors vulnerability in Huawei P30. Local attackers construct... Low Unreviewed
CVE-2020-9203 was published May 24, 2022
SAP NetWeaver AS ABAP, versions 740, 750, 751, 752, 753, 754, 755, allows an unauthenticated... High Unreviewed
CVE-2021-21446 was published May 24, 2022
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not... Moderate Unreviewed
CVE-2021-1066 was published May 24, 2022
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of... Moderate Unreviewed
CVE-2020-29490 was published May 24, 2022
There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1).... Moderate Unreviewed
CVE-2020-1848 was published May 24, 2022
In BIG-IP APM versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.3, 13.1.0... Moderate Unreviewed
CVE-2020-27724 was published May 24, 2022
In BIG-IP APM versions 15.0.0-15.0.1.3, 14.1.0-14.1.3, and 13.1.0-13.1.3.4, under certain... Moderate Unreviewed
CVE-2020-27722 was published May 24, 2022
When a BIG-IP ASM or Advanced WAF system running version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0... High Unreviewed
CVE-2020-27718 was published May 24, 2022
Philips Hue is vulnerable to a Denial of Service attack. Sending a SYN flood on port tcp/80 will... High Unreviewed
CVE-2018-7580 was published May 24, 2022
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving messages with... High Unreviewed
CVE-2018-1000891 was published May 24, 2022
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving sendheaders... High Unreviewed
CVE-2018-1000892 was published May 24, 2022
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when deserializing transactions. High Unreviewed
CVE-2018-1000893 was published May 24, 2022
srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU... High Unreviewed
CVE-2020-35573 was published May 24, 2022
In read_metadata_vorbiscomment_ of stream_decoder.c, there is possible memory exhaustion due to a... Moderate Unreviewed
CVE-2020-0487 was published May 24, 2022
In readBlock of MatroskaExtractor.cpp, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2020-0491 was published May 24, 2022
On BIG-IP 14.1.0-14.1.2.6, undisclosed endpoints in iControl REST allow for a reflected XSS... Moderate Unreviewed
CVE-2020-5950 was published May 24, 2022
A denial-of-service vulnerability exists in the Ethernet/IP server functionality of the EIP Stack... High Unreviewed
CVE-2020-13530 was published May 24, 2022
API calls in the Translation API feature in Systran Pure Neural Server before 9.7.0 allow a... High Unreviewed
CVE-2020-29540 was published May 24, 2022
CAPI (Cloud Controller) versions prior to 1.101.0 are vulnerable to a denial-of-service attack in... High Unreviewed
CVE-2020-5423 was published May 24, 2022
A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if... Moderate Unreviewed
CVE-2020-25704 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database