Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 14... Moderate Unreviewed
CVE-2022-1783 was published Jun 7, 2022
containerd CRI plugin: Host memory exhaustion through ExecSync Moderate
CVE-2022-31030 was published for github.com/containerd/containerd (Go) Jun 6, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
Uncontrolled Resource Consumption in Mattermost server Moderate
CVE-2022-1982 was published for github.com/mattermost/mattermost-server (Go) Jun 3, 2022
Uncontrolled resource consumption in the Intel(R) Distribution of OpenVINOâ„¢ Toolkit before... Moderate Unreviewed
CVE-2021-33073 was published May 24, 2022
SITEL CAP/PRX firmware version 5.2.01, allows an attacker with access to the device´s network to... Moderate Unreviewed
CVE-2021-32455 was published May 24, 2022
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPCs (Modular Port... Moderate Unreviewed
CVE-2021-0257 was published May 24, 2022
A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All... Moderate Unreviewed
CVE-2019-13940 was published May 24, 2022
Denial of service in `tf.ragged.constant` due to lack of validation Moderate
CVE-2022-29202 was published for tensorflow (pip) May 24, 2022
DoS via malicious p2p message in Go Ethereum Moderate
CVE-2022-29177 was published for github.com/ethereum/go-ethereum (Go) May 24, 2022
Uncontrolled resource consumption in the Intel(R) HAXM software before version 7.6.6 may allow an... Moderate Unreviewed
CVE-2021-0182 was published May 24, 2022
A regular expression denial of service issue in GitLab versions 8.13 to 14.2.5, 14.3.0 to 14.3.3... Moderate Unreviewed
CVE-2021-39914 was published May 24, 2022
An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers... Moderate Unreviewed
CVE-2020-21573 was published May 24, 2022
Multiple uncontrolled resource consumption vulnerabilities in the web interface of FortiPortal... Moderate Unreviewed
CVE-2021-32595 was published May 24, 2022
A resource exhaustion issue was addressed with improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2020-10005 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) implementation of Cisco Adaptive... Moderate Unreviewed
CVE-2021-40125 was published May 24, 2022
The webinstaller is a Golang web server executable that enables the generation of an Auvesy image... Moderate Unreviewed
CVE-2021-38465 was published May 24, 2022
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2021-35559 was published May 24, 2022
An Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS on EX2300, EX3400... Moderate Unreviewed
CVE-2021-31365 was published May 24, 2022
Uncontrolled resource consumption in MELSEC iQ-R series C Controller Module R12CCPU-V all... Moderate Unreviewed
CVE-2021-20600 was published May 24, 2022
Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust... Moderate Unreviewed
CVE-2021-35492 was published May 24, 2022
A vulnerability was discovered in GitLab starting with version 12.2 that allows an attacker to... Moderate Unreviewed
CVE-2021-39877 was published May 24, 2022
The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing.... Moderate Unreviewed
CVE-2021-21992 was published May 24, 2022
On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the... Moderate Unreviewed
CVE-2021-23053 was published May 24, 2022
On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, and all versions... Moderate Unreviewed
CVE-2021-23047 was published May 24, 2022
Rocket.Chat is an open-source fully customizable communications platform developed in JavaScript.... Moderate Unreviewed
CVE-2021-32832 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database