Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,091 advisories

Loading
ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (CPU consumption)... High Unreviewed
CVE-2017-17901 was published May 14, 2022
In bta_scan_results_cb_impl of btif_ble_scanner.cc, there is possible resource exhaustion if a... High Unreviewed
CVE-2017-13211 was published May 14, 2022
Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing... High Unreviewed
CVE-2017-14179 was published May 14, 2022
Apport through 2.20.7 does not properly handle core dumps from setuid binaries allowing local... High Unreviewed
CVE-2017-14177 was published May 14, 2022
Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace... High Unreviewed
CVE-2017-14180 was published May 14, 2022
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function... Moderate Unreviewed
CVE-2018-6352 was published May 14, 2022
An unprivileged attacker with connectivity to the IMM2 could cause a denial of service attack on... High Unreviewed
CVE-2017-3768 was published May 14, 2022
Huawei Smartphones with software LON-L29DC721B186 have a denial of service vulnerability. An... Moderate Unreviewed
CVE-2017-15345 was published May 14, 2022
Huawei DP300 V500R002C00, Secospace USG6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50,... Moderate Unreviewed
CVE-2017-17166 was published May 14, 2022
In ihevcd_ctb_boundary_strength_pbslice of libhevc, there is possible resource exhaustion. This... High Unreviewed
CVE-2017-13233 was published May 14, 2022
The Supervisor in Sandstorm doesn't set and enforce the resource limits of a process. This allows... Moderate Unreviewed
CVE-2017-6198 was published May 14, 2022
In some circumstances, on F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, any 11.6.x or 11.5... Moderate Unreviewed
CVE-2018-5501 was published May 14, 2022
On F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, or 11.6.1 - 11.6.2, every Multipath TCP ... Moderate Unreviewed
CVE-2018-5500 was published May 14, 2022
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated... High Unreviewed
CVE-2018-6532 was published May 14, 2022
Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, V500R001C30, Secospace USG6500... Moderate Unreviewed
CVE-2017-15323 was published May 14, 2022
The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking... Moderate Unreviewed
CVE-2016-6307 was published May 14, 2022
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service... High Unreviewed
CVE-2015-7978 was published May 14, 2022
A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote attacker to... High Unreviewed
CVE-2018-10070 was published May 14, 2022
Huawei AR1200 V200R006C10SPC300, AR160 V200R006C10SPC300, AR200 V200R006C10SPC300, AR2200... High Unreviewed
CVE-2018-7920 was published May 14, 2022
LiteCart before 2.1.2 allows remote attackers to cause a denial of service (memory consumption)... High Unreviewed
CVE-2018-10827 was published May 14, 2022
Cloud Foundry Garden-runC, versions prior to 1.13.0, does not correctly enforce disc quotas for... Moderate Unreviewed
CVE-2018-1277 was published May 14, 2022
libvirt version before 4.2.0-rc1 is vulnerable to a resource exhaustion as a result of an... High Unreviewed
CVE-2018-1064 was published May 14, 2022
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an... High Unreviewed
CVE-2018-6237 was published May 14, 2022
BIRD Internet Routing Daemon before 1.6.4 allows local users to cause a denial of service (stack... Moderate Unreviewed
CVE-2018-12066 was published May 14, 2022
In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of... Moderate Unreviewed
CVE-2018-13251 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database