GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
1,311 advisories
Filter by severity
A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD)...
Moderate
Unreviewed
CVE-2022-20950
was published
Nov 16, 2022
Concrete CMS vulnerable to Uncontrolled Resource Consumption leading to DoS
Moderate
CVE-2022-43686
was published
for
concrete5/concrete5
(Composer)
Nov 15, 2022
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a...
High
Unreviewed
CVE-2021-34568
was published
Nov 9, 2022
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer...
High
Unreviewed
CVE-2022-43945
was published
Nov 5, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42316
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42318
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42317
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42315
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42312
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42313
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42314
was published
Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to...
High
Unreviewed
CVE-2022-42311
was published
Nov 1, 2022
Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or...
High
Unreviewed
CVE-2022-34439
was published
Oct 21, 2022
Bento4 v1.6.0-639 has a memory allocation issue that can cause denial of service.
Moderate
Unreviewed
CVE-2022-40885
was published
Oct 19, 2022
A limitless resource allocation vulnerability in FPC resources of Juniper Networks Junos OS...
High
Unreviewed
CVE-2022-22211
was published
Oct 18, 2022
In VxLAN scenarios on EX4300-MP, EX4600, QFX5000 Series devices an Uncontrolled Memory Allocation...
Moderate
Unreviewed
CVE-2022-22226
was published
Oct 18, 2022
Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted...
High
Unreviewed
CVE-2022-2879
was published
Oct 14, 2022
XAPI open file limit DoS It is possible for an unauthenticated client on the network to cause...
Moderate
Unreviewed
CVE-2022-33749
was published
Oct 11, 2022
NocoDB vulnerable to Denial of Service
Moderate
CVE-2022-3423
was published
for
nocodb
(npm)
Oct 7, 2022
In ISC DHCP 1.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1 a system with access to a DHCP...
Moderate
Unreviewed
CVE-2022-2929
was published
Oct 7, 2022
IBM CICS TX 11.1 could allow a local user to cause a denial of service due to improper load...
Moderate
Unreviewed
CVE-2022-34308
was published
Oct 7, 2022
rdiffweb does not have a rate limit on incorrect password attempts to prevent brute force attacks
High
CVE-2022-3273
was published
for
rdiffweb
(pip)
Oct 6, 2022
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the...
Moderate
Unreviewed
CVE-2022-41846
was published
Oct 1, 2022
ProTip!
Advisories are also available from the
GraphQL API