GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,558
Composer 4,198
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 656
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,836

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

787 advisories

Filter by severity

Sort by

Least recently updated

Plex media server 1.21 and before is vulnerable to ddos reflection attack via plex service. High Unreviewed

CVE-2021-33959 was published Jan 18, 2023

CAMS for HIS Log Server contained in the following Yokogawa Electric products is vulnerable to... High Unreviewed

CVE-2022-22145 was published Mar 12, 2022

A denial of service vulnerability exists in the netserver recv_command functionality of reolink... High Unreviewed

CVE-2022-21801 was published Jan 29, 2022

There is a Resource Management Errors vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed

CVE-2021-37068 was published Dec 8, 2021

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed

CVE-2021-38951 was published Dec 10, 2021

A potential DoS vulnerability was discovered in Gitlab CE/EE versions 13.7 before 14.7.7, all... High Unreviewed

CVE-2022-1174 was published Apr 5, 2022

A vulnerability has been identified in SIMATIC PCS neo (Administration Console) (All versions <... High Unreviewed

CVE-2022-27194 was published Apr 13, 2022

A specially crafted packet sent to the Fernhill SCADA Server Version 3.77 and earlier may cause... High Unreviewed

CVE-2022-21155 was published Apr 13, 2022

The Background service in Allwinner R818 SoC Android Q SDK V1.0 is used to manage background... High Unreviewed

CVE-2021-38788 was published Jan 20, 2022

A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote... High Unreviewed

CVE-2021-20201 was published May 24, 2022

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the fsicapd... High Unreviewed

CVE-2022-28871 was published Apr 26, 2022

Resource management errors vulnerability in a robot controller of MELFA FR Series(controller ... High Unreviewed

CVE-2021-20586 was published May 24, 2022

Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can... High Unreviewed

CVE-2022-23772 was published Feb 12, 2022

There is a denial of service (DoS) vulnerability in eCNS280 versions V100R005C00, V100R005C10.... High Unreviewed

CVE-2021-22292 was published May 24, 2022

On BIG-IP Advanced WAF and ASM version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x... High Unreviewed

CVE-2021-22976 was published May 24, 2022

kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10... High Unreviewed

CVE-2021-28994 was published May 24, 2022

There's a flaw in the BFD library of binutils in versions before 2.36. An attacker who supplies a... High Unreviewed

CVE-2021-3487 was published May 24, 2022

Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation... High Unreviewed

CVE-2021-32920 was published May 24, 2022

Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with... High Unreviewed

CVE-2018-12121 was published May 13, 2022

The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and... High Unreviewed

CVE-2021-35041 was published May 24, 2022

A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions from 10.8... High Unreviewed

CVE-2022-3639 was published Oct 21, 2022

IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local... High Unreviewed

CVE-2021-20501 was published May 24, 2022

Running security scans against the SAN switch can cause config and secnotify processes within the... High Unreviewed

CVE-2020-15383 was published May 24, 2022

MobaXterm before 21.0 allows remote servers to cause a denial of service (Windows GUI hang) via... High Unreviewed

CVE-2021-28847 was published May 24, 2022

An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows... High Unreviewed

CVE-2021-38566 was published May 24, 2022

Previous 1 2 3 4 5 … 31 32 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

787 advisories