Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,311 advisories

Loading
In many functions of AutomaticZenRule.java, there is a possible failure to persist permissions... High Unreviewed
CVE-2022-20492 was published Jan 26, 2023
A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco Webex Room Phone and... Moderate Unreviewed
CVE-2023-20047 was published Jan 20, 2023
DDOS reflection amplification vulnerability in eAut module of Ruckus Wireless SmartZone... High Unreviewed
CVE-2021-36630 was published Jan 18, 2023
An Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding... High Unreviewed
CVE-2023-22403 was published Jan 13, 2023
revel is vulnerable to resource exhaustion Moderate
CVE-2020-36568 was published for github.com/revel/revel (Go) Dec 28, 2022
Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests... Moderate Unreviewed
CVE-2022-45434 was published Dec 27, 2022
rdiffweb has no rate limit on resend email feature High
CVE-2022-4723 was published for rdiffweb (pip) Dec 27, 2022
In mmu_map_for_fw of gs_ldfw_load.c, there is a possible mitigation bypass due to Permissive... High Unreviewed
CVE-2022-42531 was published Dec 21, 2022
A vulnerability has been identified in JT2Go (All versions), Teamcenter Visualization V13.2 (All... Moderate Unreviewed
CVE-2022-41288 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20478 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20480 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20479 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20484 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20485 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20486 was published Dec 13, 2022
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist... High Unreviewed
CVE-2022-20487 was published Dec 13, 2022
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by... Moderate Unreviewed
CVE-2022-22488 was published Dec 12, 2022
golang.org/x/net/http2 vulnerable to possible excessive memory growth Moderate
CVE-2022-41717 was published for golang.org/x/net (Go) Dec 8, 2022
westonsteimel
Credited to westonsteimel
libp2p DoS vulnerability from lack of resource management High
CVE-2022-23487 was published for libp2p (npm) Dec 7, 2022
libp2p DoS vulnerability from lack of resource management High
CVE-2022-23486 was published for libp2p (Rust) Dec 7, 2022
Denial of service in Mattermost Moderate
CVE-2022-4045 was published for github.com/mattermost/mattermost-server (Go) Nov 23, 2022
A denial-of-service vulnerability in the Mattermost Playbooks plugin allows an authenticated user... Moderate Unreviewed
CVE-2022-4019 was published Nov 23, 2022
Denial of service in Mattermost Moderate
CVE-2022-4044 was published for github.com/mattermost/mattermost-server (Go) Nov 23, 2022
Creation of new database tables through login form on PostgreSQL High
CVE-2022-41932 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) Nov 21, 2022
In JetBrains Hub before 2022.3.15181 Throttling was missed when sending emails to a particular... High Unreviewed
CVE-2022-45471 was published Nov 18, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database