GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
270 advisories
Filter by severity
Keycloak vulnerable to infinite loop based Denial of Service
High
CVE-2017-2646
was published
for
org.keycloak:keycloak-core
(Maven)
Oct 18, 2018
Uncontrolled resource consumption in validators Python package
High
CVE-2019-19588
was published
for
validators
(pip)
Jan 21, 2020
Infinite loop causing Denial of Service in colors
High
GHSA-5rqg-jm4f-cqx7
was published
for
Colors
(npm)
Jan 10, 2022
Infinite loop in .Net Bond
High
CVE-2020-1469
was published
for
Bond.Core.CSharp
(NuGet)
Apr 8, 2022
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
High
Unreviewed
CVE-2022-23352
was published
Mar 22, 2022
A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ...
High
Unreviewed
CVE-2022-21159
was published
Apr 16, 2022
An infinite loop programming error exists in the DNS server functionality of Cesanta Mongoose 6.8...
High
Unreviewed
CVE-2017-2909
was published
May 13, 2022
Excessive Iteration in Compress
High
CVE-2021-35515
was published
for
org.apache.commons:commons-compress
(Maven)
Aug 2, 2021
Uncaught Exception in jsoup
High
CVE-2021-37714
was published
for
org.jsoup:jsoup
(Maven)
Aug 23, 2021
Loop with Unreachable Exit Condition in Apache Thrift
High
CVE-2019-0205
was published
for
org.apache.thrift:libthrift
(Maven)
May 24, 2022
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom...
High
Unreviewed
CVE-2021-27918
was published
May 24, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software...
High
Unreviewed
CVE-2021-1252
was published
May 24, 2022
An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415...
High
Unreviewed
CVE-2022-32058
was published
Jul 8, 2022
A CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability exists that could...
High
Unreviewed
CVE-2022-34760
was published
Jul 14, 2022
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker...
High
Unreviewed
CVE-2022-30634
was published
Jul 16, 2022
Denial of Service in Apache POI
High
CVE-2017-12626
was published
for
org.apache.poi:poi
(Maven)
Jan 14, 2021
file-type vulnerable to Infinite Loop via malformed MKV file
High
CVE-2022-36313
was published
for
file-type
(npm)
Jul 22, 2022
In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite...
High
Unreviewed
CVE-2019-16319
was published
May 24, 2022
In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file can result in an...
High
Unreviewed
CVE-2019-20421
was published
May 24, 2022
lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3.9.3 mishandles truncated UTF-8...
High
Unreviewed
CVE-2020-7046
was published
May 24, 2022
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in...
High
Unreviewed
CVE-2022-25742
was published
Nov 15, 2022
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6...
High
Unreviewed
CVE-2022-33239
was published
Nov 15, 2022
cumulative-distribution-function Infinite Loop vulnerability
High
CVE-2021-29486
was published
for
cumulative-distribution-function
(npm)
May 4, 2021
ProTip!
Advisories are also available from the
GraphQL API