Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

438 advisories

Loading
In mmu_map_for_fw of gs_ldfw_load.c, there is a possible mitigation bypass due to Permissive... High Unreviewed
CVE-2022-42531 was published Dec 21, 2022
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix... High Unreviewed
CVE-2021-22919 was published May 24, 2022
In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to... High Unreviewed
CVE-2021-38387 was published May 24, 2022
A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt... High Unreviewed
CVE-2021-36798 was published May 24, 2022
TripleCross v0.1.0 was discovered to contain a stack overflow which occurs because there is no... High Unreviewed
CVE-2022-35506 was published Aug 4, 2022
A segmentation fault in TripleCross v0.1.0 occurs when sending a control command from the client... High Unreviewed
CVE-2022-35505 was published Aug 4, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21861 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21860 was published May 24, 2022
node-opcua DoS vulnerability via message with memory allocation that exceeds v8's memory limit High
CVE-2022-25231 was published for node-opcua (npm) Aug 24, 2022
The AP4_CttsAtom class in Core/Ap4CttsAtom.cpp in Bento4 1.5.1.0 allows remote attackers to cause... High Unreviewed
CVE-2018-10790 was published May 24, 2022
VMware Workspace ONE UEM REST API contains a denial of service vulnerability. A malicious actor... High Unreviewed
CVE-2021-22029 was published May 24, 2022
The affected product does not properly control the allocation of resources. A user may be able to... High Unreviewed
CVE-2021-38463 was published May 24, 2022
In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process... High Unreviewed
CVE-2021-46828 was published Jul 21, 2022
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email... High Unreviewed
CVE-2021-34741 was published May 24, 2022
A Memory Allocation with Excessive Size Value vulnerablity in the TEE_Realloc function in Samsung... High Unreviewed
CVE-2022-40762 was published Sep 17, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34854 was published May 24, 2022
There is a Code injection vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-36985 was published May 24, 2022
A memory allocation with excessive size value vulnerability in the license verification function... High Unreviewed
CVE-2021-36174 was published May 24, 2022
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component ... High Unreviewed
CVE-2021-29324 was published May 24, 2022
All versions of package asneg/opcuastack are vulnerable to Denial of Service (DoS) due to a... High Unreviewed
CVE-2022-24381 was published Aug 24, 2022
All versions of package freeopcua/freeopcua are vulnerable to Denial of Service (DoS) when... High Unreviewed
CVE-2022-24298 was published Aug 24, 2022
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a... High Unreviewed
CVE-2021-34568 was published Nov 9, 2022
Regular Expression Denial of Service in sshpk High
CVE-2018-3737 was published for sshpk (npm) Aug 15, 2018
XNIO `notifyReadClosed` method logging message to unexpected end High
CVE-2022-0084 was published for org.jboss.xnio:xnio-all (Maven) Aug 27, 2022
HashiCorp Nomad vulnerable to Allocation of Resources Without Limits or Throttling High
CVE-2022-24685 was published for github.com/hashicorp/nomad (Go) Mar 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database