Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,867
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,116
NuGet
735
pip
3,940
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
An issue was discovered in Zammad before 4.1.1. An attacker with valid agent credentials may send... Moderate Unreviewed
CVE-2021-42084 was published May 24, 2022
An infinite loop in Open Robotics ros_comm XMLRPC server in ROS Melodic through 1.4.11 and ROS... High Unreviewed
CVE-2021-37146 was published May 24, 2022
Loop with unreachable exit condition may occur due to improper handling of unsupported input in... High Unreviewed
CVE-2021-1914 was published May 24, 2022
A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14... Moderate Unreviewed
CVE-2021-3679 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... High Unreviewed
CVE-2021-27385 was published May 24, 2022
A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive... Moderate Unreviewed
CVE-2021-33599 was published May 24, 2022
Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of... High Unreviewed
CVE-2021-4185 was published Dec 31, 2021
Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows... High Unreviewed
CVE-2022-0586 was published Feb 15, 2022
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows... High Unreviewed
CVE-2021-4184 was published Dec 31, 2021
Security Update for the OPC UA .NET Standard Stack High
CVE-2022-29862 was published for OPCFoundation.NetStandard.Opc.Ua.Core (NuGet) Jun 17, 2022
mregen
An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The... High Unreviewed
CVE-2021-31400 was published May 24, 2022
The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial... High Unreviewed
CVE-2021-27565 was published May 24, 2022
In Contiki 3.0, potential nonterminating acknowledgment loops exist in the Telnet service. When... High Unreviewed
CVE-2021-38311 was published May 24, 2022
In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to... High Unreviewed
CVE-2021-38387 was published May 24, 2022
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all... High Unreviewed
CVE-2022-34862 was published Aug 5, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ... Moderate Unreviewed
CVE-2021-34332 was published May 24, 2022
An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special... High Unreviewed
CVE-2021-36125 was published May 24, 2022
Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via... High Unreviewed
CVE-2021-22222 was published May 24, 2022
Infinite loop in Tomcat due to parsing error High
CVE-2021-41079 was published for org.apache.tomcat:tomcat (Maven) Sep 20, 2021
Hirschmann OS2, RSP, and RSPE devices before HiOS 08.3.00 allow a denial of service. An... Moderate Unreviewed
CVE-2020-9307 was published May 24, 2022
On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, malformed HTTP/2 requests may... High Unreviewed
CVE-2021-23009 was published May 24, 2022
In an EVPN/VXLAN scenario, if an IRB interface with a virtual gateway address (VGA) is configured... Moderate Unreviewed
CVE-2021-0221 was published May 24, 2022
A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in... Moderate Unreviewed
CVE-2021-3508 was published May 24, 2022
wolfSSL through 5.0.0 allows an attacker to cause a denial of service and infinite loop in the... Moderate Unreviewed
CVE-2021-44718 was published Sep 3, 2022
An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a... Moderate Unreviewed
CVE-2020-36310 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database