Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,041 advisories

Loading
The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of... High Unreviewed
CVE-2018-18898 was published May 13, 2022
EnumStringValues vulnerable to Uncontrolled Resource Consumption Low
CVE-2020-36620 was published for EnumStringValues (NuGet) Dec 21, 2022
SAP NetWeaver Application Server for ABAP (Kernel) and ABAP Platform (Kernel) - versions KERNEL 7... High Unreviewed
CVE-2022-22543 was published Feb 11, 2022
A vulnerability in the pfe-chassisd Chassis Manager (CMLC) daemon of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2019-0046 was published May 24, 2022
IBM MQ 9.1.0.0, 9.1.0.1, 9.1.1, and 9.1.0.2 is vulnerable to a denial of service due to a local... Moderate Unreviewed
CVE-2019-4049 was published May 24, 2022
Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible... Moderate Unreviewed
CVE-2020-9059 was published Jan 11, 2022
An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5... High Unreviewed
CVE-2019-15538 was published May 24, 2022
Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not... Moderate Unreviewed
CVE-2020-9060 was published Jan 11, 2022
A vulnerability has been identified in SCALANCE X-200 (All versions), SCALANCE X-200IRT (All... High Unreviewed
CVE-2019-10942 was published May 24, 2022
Undertow vulnerable to Uncontrolled Resource Consumption High
CVE-2019-14888 was published for io.undertow:undertow-core (Maven) May 24, 2022
An issue was discovered in the MediaWiki through 1.38.2. The community configuration pages for... Moderate Unreviewed
CVE-2022-39194 was published Sep 3, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed
CVE-2019-4046 was published May 13, 2022
Pragma FortressSSH 5.0 Build 4 Revision 293 and earlier handles long input to sshd.exe by... Moderate Unreviewed
CVE-2008-0132 was published May 1, 2022
A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd)... Low Unreviewed
CVE-2020-10717 was published May 24, 2022
In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an... High Unreviewed
CVE-2021-43173 was published May 24, 2022
GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in... Moderate Unreviewed
CVE-2020-6610 was published May 24, 2022
CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation... Moderate Unreviewed
CVE-2020-7052 was published May 24, 2022
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated... High Unreviewed
CVE-2020-7920 was published May 24, 2022
Certain General Electric Renewable Energy products allow attackers to use a code to trigger a... Critical Unreviewed
CVE-2022-24118 was published Dec 26, 2022
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0), SCALANCE S612 (All... High Unreviewed
CVE-2019-13926 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017... Moderate Unreviewed
CVE-2020-3753 was published May 24, 2022
ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows... Moderate Unreviewed
CVE-2020-8992 was published May 24, 2022
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service (disk... Moderate Unreviewed
CVE-2020-9369 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017... Moderate Unreviewed
CVE-2020-3756 was published May 24, 2022
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could... Moderate Unreviewed
CVE-2020-9431 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database