Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,316 advisories

Loading
basic/unit-name.c in systemd 220 through 248 has a Memory Allocation with an Excessive Size Value... Moderate Unreviewed
CVE-2021-33910 was published May 24, 2022
An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19463 was published May 24, 2022
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19464 was published May 24, 2022
Liferay Portal and Liferay DXP vulnerable to email spam via lack of flagging rate Moderate
CVE-2021-33320 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix... High Unreviewed
CVE-2021-22919 was published May 24, 2022
btrfs in the Linux kernel before 5.13.4 allows attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2021-38203 was published May 24, 2022
A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt... High Unreviewed
CVE-2021-36798 was published May 24, 2022
In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to... High Unreviewed
CVE-2021-38387 was published May 24, 2022
The AWV and MiCollab Client Service components in Mitel MiCollab before 9.3 could allow an... Moderate Unreviewed
CVE-2021-32068 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21861 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21860 was published May 24, 2022
A vulnerability was discovered in GitLab versions before 14.0.2, 13.12.6, 13.11.6. GitLab Webhook... Moderate Unreviewed
CVE-2021-22246 was published May 24, 2022
An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0... Moderate Unreviewed
CVE-2020-18899 was published May 24, 2022
A vulnerability in the way Cisco UCS Manager software handles SSH sessions could allow an... Moderate Unreviewed
CVE-2021-1592 was published May 24, 2022
The AP4_CttsAtom class in Core/Ap4CttsAtom.cpp in Bento4 1.5.1.0 allows remote attackers to cause... High Unreviewed
CVE-2018-10790 was published May 24, 2022
xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to... Moderate Unreviewed
CVE-2021-28700 was published May 24, 2022
VMware Workspace ONE UEM REST API contains a denial of service vulnerability. A malicious actor... High Unreviewed
CVE-2021-22029 was published May 24, 2022
All versions of the afffected TOYOPUC-PC10 Series,TOYOPUC-Plus Series,TOYOPUC-PC3J/PC2J Series,... Moderate Unreviewed
CVE-2021-33011 was published May 24, 2022
On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the... Moderate Unreviewed
CVE-2021-23053 was published May 24, 2022
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 under very... Moderate Unreviewed
CVE-2021-29763 was published May 24, 2022
Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could... High Unreviewed
CVE-2021-34735 was published May 24, 2022
MediaWiki allows a denial of service Moderate
CVE-2021-41800 was published for mediawiki/core (Composer) May 24, 2022
MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query... High Unreviewed
CVE-2021-41799 was published May 24, 2022
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM... High Unreviewed
CVE-2021-41546 was published May 24, 2022
On MX Series platforms with MS-MPC/MS-MIC, an Allocation of Resources Without Limits or... Moderate Unreviewed
CVE-2021-31369 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database