Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

302 advisories

Loading
In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an... High Unreviewed
CVE-2020-26575 was published May 24, 2022
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. When an unsupported TCP option... High Unreviewed
CVE-2020-24337 was published May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack... High Unreviewed
CVE-2020-13986 was published May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack... High Unreviewed
CVE-2020-13984 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the... High Unreviewed
CVE-2020-36227 was published May 24, 2022
picoquic (before 3rd of July 2020) allows attackers to cause a denial of service (infinite loop)... High Unreviewed
CVE-2020-24944 was published May 24, 2022
On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, malformed HTTP/2 requests may... High Unreviewed
CVE-2021-23009 was published May 24, 2022
Infinite loop in Tomcat due to parsing error High
CVE-2021-41079 was published for org.apache.tomcat:tomcat (Maven) Sep 20, 2021
Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via... High Unreviewed
CVE-2021-22222 was published May 24, 2022
An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special... High Unreviewed
CVE-2021-36125 was published May 24, 2022
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all... High Unreviewed
CVE-2022-34862 was published Aug 5, 2022
In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to... High Unreviewed
CVE-2021-38387 was published May 24, 2022
In Contiki 3.0, potential nonterminating acknowledgment loops exist in the Telnet service. When... High Unreviewed
CVE-2021-38311 was published May 24, 2022
The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial... High Unreviewed
CVE-2021-27565 was published May 24, 2022
Security Update for the OPC UA .NET Standard Stack High
CVE-2022-29862 was published for OPCFoundation.NetStandard.Opc.Ua.Core (NuGet) Jun 17, 2022
mregen
Credited to mregen
An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The... High Unreviewed
CVE-2021-31400 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-27385 was published May 24, 2022
Loop with unreachable exit condition may occur due to improper handling of unsupported input in... High Unreviewed
CVE-2021-1914 was published May 24, 2022
An infinite loop in Open Robotics ros_comm XMLRPC server in ROS Melodic through 1.4.11 and ROS... High Unreviewed
CVE-2021-37146 was published May 24, 2022
An issue was discovered in MediaWiki through 1.36.2. A parser function related to loop control... High Unreviewed
CVE-2021-42040 was published May 24, 2022
Junrar vulnerable to infinite loop via extracting carefully crafted RAR archive High
CVE-2022-23596 was published for com.github.junrar:junrar (Maven) Feb 1, 2022
occia ZanderHuang
Han0nly
Credited to occia, ZanderHuang, and Han0nly
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby... High Unreviewed
CVE-2022-28882 was published Aug 24, 2022
Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service... High Unreviewed
CVE-2021-22235 was published May 24, 2022
Apache Avro Rust SDK vulnerable to reader looping in cycle endlessly, consuming CPU High
CVE-2022-35724 was published for apache-avro (Rust) Aug 10, 2022
Endless Infinite loop in Blender-thumnailing due to logical bugs. High Unreviewed
CVE-2022-2833 was published Aug 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database