Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,265
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,040 advisories

Loading
Mikrotik RouterOs before 6.44.6 (long-term tree) suffers from an uncontrolled resource... Moderate Unreviewed
CVE-2020-20221 was published May 24, 2022
Uncontrolled resource consumption in MELSEC iQ-R series C Controller Module R12CCPU-V all... Moderate Unreviewed
CVE-2021-20600 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 14... Moderate Unreviewed
CVE-2022-1783 was published Jun 7, 2022
An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in... Moderate Unreviewed
CVE-2021-20234 was published May 24, 2022
On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any... High Unreviewed
CVE-2021-0230 was published May 24, 2022
Dell PowerStore contains an Uncontrolled Resource Consumption Vulnerability in PowerStore User... High Unreviewed
CVE-2022-22556 was published Jun 3, 2022
Multiple vulnerabilities in the implementation of the Cisco Discovery Protocol and Link Layer... Moderate Unreviewed
CVE-2021-1563 was published May 24, 2022
The vCenter Server contains multiple denial-of-service vulnerabilities in VAPI (vCenter API)... High Unreviewed
CVE-2021-22009 was published May 24, 2022
Clustered Data ONTAP versions 9.6 and higher prior to 9.6P16, 9.7P16, 9.8P7 and 9.9.1P3 are... High Unreviewed
CVE-2021-27005 was published May 24, 2022
A vulnerability in the packet processing functionality of Cisco Embedded Wireless Controller (EWC... High Unreviewed
CVE-2021-1615 was published May 24, 2022
A restricted shell escape sequence is possible on Cradlepoint IBR900-600 7.2.60 devices that can... High Unreviewed
CVE-2021-37471 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when... High Unreviewed
CVE-2021-20216 was published May 24, 2022
It has been discovered that redhat-certification does not properly limit the number of recursive... High Unreviewed
CVE-2018-10868 was published May 24, 2022
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in... High Unreviewed
CVE-2021-20237 was published May 24, 2022
PNGDec commit 8abf6be was discovered to contain a FPE via SaveBMP at /linux/main.cpp. Moderate Unreviewed
CVE-2022-35013 was published Aug 17, 2022
A vulnerability in Ethernet over GRE (EoGRE) packet processing of Cisco IOS XE Wireless... High Unreviewed
CVE-2021-1611 was published May 24, 2022
An issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side... High Unreviewed
CVE-2021-42075 was published May 24, 2022
Potential security vulnerabilities have been discovered on a certain HP LaserJet Pro printer that... High Unreviewed
CVE-2021-3704 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.8 before 14... Moderate Unreviewed
CVE-2022-1821 was published Jun 7, 2022
In addAutomaticZenRule of ZenModeHelper.java, there is a possible permanent denial of service due... Moderate Unreviewed
CVE-2022-20143 was published Jun 16, 2022
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port... High Unreviewed
CVE-2021-0202 was published May 24, 2022
Uncontrolled Resource Consumption vulnerability in MELSEC iQ-R Series R00/01/02CPU Firmware... High Unreviewed
CVE-2021-20609 was published Dec 2, 2021
Multiple vulnerabilities in the implementation of the Cisco Discovery Protocol and Link Layer... Moderate Unreviewed
CVE-2021-1564 was published May 24, 2022
Uses of deprecated API can be used to cause DoS in user-facing endpoints High
CVE-2022-31054 was published for github.com/argoproj/argo-events (Go) Jun 17, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows... High Unreviewed
CVE-2021-36924 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database