Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,311 advisories

Loading
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function... High Unreviewed
CVE-2022-32041 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc, week... High Unreviewed
CVE-2022-32051 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the... High Unreviewed
CVE-2022-32039 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32047 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg. High Unreviewed
CVE-2022-32037 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32045 was published Jul 2, 2022
An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is... High Unreviewed
CVE-2022-34750 was published Jun 29, 2022
The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2021-40607 was published Jun 29, 2022
The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2021-40609 was published Jun 29, 2022
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array... High Unreviewed
CVE-2021-40941 was published Jun 28, 2022
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior... High Unreviewed
CVE-2022-27871 was published Jun 22, 2022
Denial of Service in Spring Cloud Function High
CVE-2022-22979 was published for org.springframework.cloud:spring-cloud-function-parent (Maven) Jun 22, 2022
DoS through large manifest files in Argo CD Moderate
CVE-2022-31016 was published for github.com/argoproj/argo-cd (Go) Jun 21, 2022
AdamKorcz
Credited to AdamKorcz
Denial of Service in GitHub repository inventree/inventree prior to 0.8.0. Moderate Unreviewed
CVE-2022-2134 was published Jun 21, 2022
Improper memory allocation during counter check DLM handling can lead to denial of service in... High Unreviewed
CVE-2021-35096 was published Jun 15, 2022
An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core... Moderate Unreviewed
CVE-2022-31285 was published Jun 11, 2022
An issue was discovered in Bento4 v1.2. There is an allocation size request error in /Ap4RtpAtom... Moderate Unreviewed
CVE-2022-31287 was published Jun 11, 2022
In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r... High Unreviewed
CVE-2022-29404 was published Jun 10, 2022
If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where... High Unreviewed
CVE-2022-30522 was published Jun 10, 2022
Node DOS by way of memory exhaustion through ExecSync request in CRI-O High
CVE-2022-1708 was published for github.com/cri-o/cri-o (Go) Jun 6, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
adbyby v2.7 allows external users to make connections via port 8118. This can cause a program... Moderate Unreviewed
CVE-2022-29767 was published Jun 4, 2022
Onlyoffice Document Server v6.0.0 and below and Core 6.1.0.26 and below were discovered to... Critical Unreviewed
CVE-2022-29776 was published Jun 3, 2022
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB... High Unreviewed
CVE-2021-28706 was published May 24, 2022
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component ... High Unreviewed
CVE-2021-29324 was published May 24, 2022
A regular expression denial of service issue in GitLab versions 8.13 to 14.2.5, 14.3.0 to 14.3.3... Moderate Unreviewed
CVE-2021-39914 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database