GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
432 advisories
Filter by severity
There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800...
High
Unreviewed
CVE-2021-40008
was published
Dec 14, 2021
Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet...
High
Unreviewed
CVE-2021-4190
was published
Dec 31, 2021
In Bluetooth, there is a possible application crash due to bluetooth flooding a device with...
Moderate
Unreviewed
CVE-2022-20023
was published
Jan 5, 2022
A Missing Release of Resource after Effective Lifetime vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2022-22170
was published
Jan 20, 2022
A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of...
High
Unreviewed
CVE-2020-22844
was published
Mar 1, 2022
drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers...
Moderate
Unreviewed
CVE-2022-26878
was published
Mar 12, 2022
A flaw was found in the vhost-vsock device of QEMU. In case of error, an invalid element was not...
Low
Unreviewed
CVE-2022-26354
was published
Mar 17, 2022
A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with...
High
Unreviewed
CVE-2022-26353
was published
Mar 17, 2022
A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions from 13.1...
Moderate
Unreviewed
CVE-2022-1100
was published
Apr 5, 2022
Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log...
Moderate
Unreviewed
CVE-2022-26356
was published
Apr 6, 2022
A vulnerability in the web services interface of Cisco IOS Software and Cisco IOS XE Software...
High
Unreviewed
CVE-2022-20697
was published
Apr 16, 2022
PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which...
High
Unreviewed
CVE-2010-4657
was published
Apr 21, 2022
A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were...
Moderate
Unreviewed
CVE-2011-1489
was published
Apr 22, 2022
A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are...
Moderate
Unreviewed
CVE-2011-1490
was published
Apr 22, 2022
A memory leak in Apache 2.0 through 2.0.44 allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2003-0132
was published
Apr 29, 2022
Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows...
Moderate
Unreviewed
CVE-1999-1127
was published
Apr 30, 2022
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions,...
Moderate
Unreviewed
CVE-2007-0897
was published
May 1, 2022
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and...
High
Unreviewed
CVE-2007-4103
was published
May 1, 2022
IBM Rational Build Forge 7.0.2 allows remote attackers to cause a denial of service (CPU...
Moderate
Unreviewed
CVE-2008-2122
was published
May 1, 2022
Memory leak in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12...
High
Unreviewed
CVE-2008-3799
was published
May 2, 2022
Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x...
High
Unreviewed
CVE-2009-2903
was published
May 2, 2022
Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris...
Moderate
Unreviewed
CVE-2009-3519
was published
May 2, 2022
Memory leak in the gk_circuit_info_do_in_acf function in the H.323 implementation in Cisco IOS...
Moderate
Unreviewed
CVE-2009-5039
was published
May 2, 2022
Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause...
High
Unreviewed
CVE-2016-0877
was published
May 13, 2022
In MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a...
Moderate
Unreviewed
CVE-2018-1000036
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API