Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

995 advisories

Loading
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service ... Moderate Unreviewed
CVE-2019-9705 was published May 13, 2022
A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated... Moderate Unreviewed
CVE-2018-14660 was published May 13, 2022
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed... Moderate Unreviewed
CVE-2019-9072 was published May 13, 2022
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed... Moderate Unreviewed
CVE-2019-9073 was published May 13, 2022
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed... Moderate Unreviewed
CVE-2019-9076 was published May 13, 2022
An allocation of memory without limits, that could result in the stack clashing with another... High Unreviewed
CVE-2018-16864 was published May 13, 2022
An allocation of memory without limits, that could result in the stack clashing with another... High Unreviewed
CVE-2018-16865 was published May 13, 2022
ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers,... High Unreviewed
CVE-2019-10953 was published May 13, 2022
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack... High Unreviewed
CVE-2016-4074 was published May 13, 2022
A vulnerability in the processing of IP Service Level Agreement (SLA) packets by Cisco IOS... High Unreviewed
CVE-2019-1737 was published May 13, 2022
The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mishandles EOCD records, which... Moderate Unreviewed
CVE-2017-14107 was published May 13, 2022
A Remote Code Execution vulnerability in lmgrd and vendor daemon components of FlexNet Publisher... Critical Unreviewed
CVE-2018-20033 was published May 13, 2022
It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial... Moderate Unreviewed
CVE-2018-16846 was published May 13, 2022
Allocation of Resources Without Limits or Throttling in Spring Framework Moderate
CVE-2022-22971 was published for org.springframework:spring-messaging (Maven) May 13, 2022
amita-seal sunSUNQ
Denial of service in Spring Framework High
CVE-2022-22970 was published for org.springframework:spring-beans (Maven) May 13, 2022
amita-seal sunSUNQ
An issue has been discovered in GitLab affecting all versions starting from 13.9 before 14.8.6,... High Unreviewed
CVE-2022-1510 was published May 12, 2022
An issue has been discovered in GitLab affecting all versions before 14.8.6, all versions... Moderate Unreviewed
CVE-2022-1428 was published May 12, 2022
Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack... High Unreviewed
CVE-2022-28556 was published May 5, 2022
A vulnerability in the Snort detection engine integration for Cisco Firepower Threat Defense (FTD... High Unreviewed
CVE-2022-20751 was published May 4, 2022
A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD)... High Unreviewed
CVE-2022-20757 was published May 4, 2022
A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD)... High Unreviewed
CVE-2022-20767 was published May 4, 2022
angular vulnerable to regular expression denial of service (ReDoS) Moderate
CVE-2022-25844 was published for angular (npm) May 3, 2022
relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in... Moderate Unreviewed
CVE-2022-29973 was published May 3, 2022
PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict the number of temporary files created... Moderate Unreviewed
CVE-2009-4017 was published May 2, 2022
The SIP channel driver in Asterisk Open Source 1.2.x before 1.2.34, 1.4.x before 1.4.26.1, 1.6.0... High Unreviewed
CVE-2009-2726 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database