Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

438 advisories

Loading
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email... High Unreviewed
CVE-2018-15460 was published May 13, 2022
The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause... High Unreviewed
CVE-2017-12693 was published May 13, 2022
The ReadVIFFImage function in coders/viff.c in ImageMagick 7.0.6-6 allows remote attackers to... High Unreviewed
CVE-2017-12692 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage... High Unreviewed
CVE-2017-12430 was published May 13, 2022
In ImageMagick 7.0.6-2, a memory exhaustion vulnerability was found in the function ReadPSDImage... High Unreviewed
CVE-2017-12563 was published May 13, 2022
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which... High Unreviewed
CVE-2017-13133 was published May 13, 2022
The ReadOneLayer function in coders/xcf.c in ImageMagick 7.0.6-6 allows remote attackers to cause... High Unreviewed
CVE-2017-12691 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage... High Unreviewed
CVE-2017-12429 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadSUNImage... High Unreviewed
CVE-2017-12435 was published May 13, 2022
A vulnerability in the egress packet processing functionality of the Cisco StarOS operating... High Unreviewed
CVE-2018-0239 was published May 13, 2022
The WritePixelCachePixels function in ImageMagick 7.0.6-6 allows remote attackers to cause a... High Unreviewed
CVE-2017-12875 was published May 13, 2022
Allocation of Resources Without Limits or Throttling in Keycloak High
CVE-2020-10758 was published for org.keycloak:keycloak-parent (Maven) Feb 9, 2022
A vulnerability in the file descriptor handling of Cisco TelePresence Video Communication Server ... High Unreviewed
CVE-2018-0358 was published May 13, 2022
Allocation of Resources Without Limits or Throttling in Undertow High
CVE-2020-10705 was published for io.undertow:undertow-core (Maven) Apr 30, 2021
IBM API Connect 2018.1 through 2018.3.7 could allow an unauthenticated attacker to cause a denial... High Unreviewed
CVE-2018-1779 was published May 13, 2022
ReDOS in Vfsjfilechooser2 High
CVE-2021-29061 was published for com.github.fracpete:vfsjfilechooser2 (Maven) Jan 6, 2022
ReDOS in IS-SVG High
CVE-2021-29059 was published for is-svg (npm) Dec 10, 2021
Allocation of resources without limits or throttling in keycloak-model-infinispan High
CVE-2021-3637 was published for org.keycloak:keycloak-model-infinispan (Maven) Jul 13, 2021
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow in the... High Unreviewed
CVE-2021-29329 was published Nov 20, 2021
An SRX Series Service Gateway configured for Unified Threat Management (UTM) may experience a... High Unreviewed
CVE-2019-0010 was published May 13, 2022
Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which... High Unreviewed
CVE-2019-6486 was published May 13, 2022
A regular expression denial of service (ReDoS) vulnerability exits in cbioportal 3.6.21 and older... High Unreviewed
CVE-2021-38244 was published Dec 17, 2021
The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote... High Unreviewed
CVE-2019-7581 was published May 13, 2022
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular... High Unreviewed
CVE-2021-44686 was published Dec 8, 2021
In Tor before 0.3.3.12, 0.3.4.x before 0.3.4.11, 0.3.5.x before 0.3.5.8, and 0.4.x before 0.4.0.2... High Unreviewed
CVE-2019-8955 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database