Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,040 advisories

Loading
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and... Moderate Unreviewed
CVE-2014-3407 was published May 17, 2022
On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the... Moderate Unreviewed
CVE-2021-23053 was published May 24, 2022
UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of... High Unreviewed
CVE-2021-22882 was published May 24, 2022
Uncontrolled Resource Consumption in node-opcua High
CVE-2022-21208 was published for node-opcua (npm) Aug 24, 2022
Uncontrolled Resource Consumption in opcua High
CVE-2022-25888 was published for opcua (Rust) Aug 24, 2022
Undertow vulnerable to Denial of Service (DoS) attacks High
CVE-2021-3859 was published for io.undertow:undertow-core (Maven) Jul 15, 2022
LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in... High Unreviewed
CVE-2022-41568 was published Nov 29, 2022
Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An... Moderate Unreviewed
CVE-2020-7016 was published May 24, 2022
A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping... High Unreviewed
CVE-2021-4021 was published Feb 25, 2022
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in... Moderate Unreviewed
CVE-2022-40736 was published Sep 16, 2022
Uncontrolled resource consumption in the Intel(R) Support Android application before version 22... Moderate Unreviewed
CVE-2022-30691 was published Nov 11, 2022
Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by... High Unreviewed
CVE-2022-45196 was published Nov 13, 2022
Uncontrolled Resource Consumption in Apache Tika Moderate
CVE-2020-1950 was published for org.apache.tika:tika (Maven) May 7, 2021
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where... Moderate Unreviewed
CVE-2022-28191 was published May 18, 2022
IBM DataPower Gateway 10.0.2.0, 10.0.3.0, 10.0.1.0 through 10.0.1.4, and 2018.4.1.0 through 2018... High Unreviewed
CVE-2021-38872 was published May 18, 2022
A vulnerability has been identified in SIMATIC CP 442-1 RNA (All versions < V1.5.18), SIMATIC CP... Moderate Unreviewed
CVE-2022-27640 was published May 21, 2022
An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. /rules/REQUEST... Moderate Unreviewed
CVE-2019-11388 was published May 24, 2022
A flaw was found in Undertow. A potential security issue in flow control handling by the browser... High Unreviewed
CVE-2022-1259 was published Sep 1, 2022
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote... Moderate Unreviewed
CVE-2011-0762 was published May 17, 2022
An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. /rules/REQUEST... Moderate Unreviewed
CVE-2019-11391 was published May 24, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to a denial of service via email... High Unreviewed
CVE-2022-30614 was published Sep 2, 2022
OPC UA Legacy Java Stack 2022-04-01 allows a remote attacker to cause a server to stop processing... High Unreviewed
CVE-2022-30551 was published May 21, 2022
An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. /rules/REQUEST... Moderate Unreviewed
CVE-2019-11387 was published May 24, 2022
An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. /rules/REQUEST... Moderate Unreviewed
CVE-2019-11389 was published May 24, 2022
An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. /rules/REQUEST... Moderate Unreviewed
CVE-2019-11390 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database