GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
755 advisories
Filter by severity
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network...
High
Unreviewed
CVE-2018-1000115
was published
May 13, 2022
An issue was discovered on FiberHome Fengine S5800 switches V210R240. An unauthorized attacker...
High
Unreviewed
CVE-2017-5544
was published
May 13, 2022
An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels,...
High
Unreviewed
CVE-2016-8374
was published
May 13, 2022
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard...
High
Unreviewed
CVE-2017-12741
was published
May 13, 2022
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that...
High
Unreviewed
CVE-2018-16843
was published
May 13, 2022
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that...
High
Unreviewed
CVE-2018-16844
was published
May 13, 2022
A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers...
High
Unreviewed
CVE-2017-6024
was published
May 13, 2022
The SdpContents::Session::Medium::parse function in resip/stack/SdpContents.cxx in reSIProcate 1...
High
Unreviewed
CVE-2017-11521
was published
May 13, 2022
An exploitable code execution vulnerability exists in the UDP network functionality of Yi Home...
High
Unreviewed
CVE-2018-3935
was published
May 13, 2022
An exploitable denial of service vulnerability exists in the processing of snmp-set commands of...
High
Unreviewed
CVE-2017-12090
was published
May 13, 2022
An exploitable insufficient resource pool vulnerability exists in the session communication...
High
Unreviewed
CVE-2017-12093
was published
May 13, 2022
An exploitable vulnerability exists in the user photo update functionality of Circle with Disney...
High
Unreviewed
CVE-2017-2884
was published
May 13, 2022
An exploitable Denial of Service vulnerability exists in the API daemon of Circle with Disney...
High
Unreviewed
CVE-2017-2889
was published
May 13, 2022
Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. This...
High
Unreviewed
CVE-2022-1699
was published
May 13, 2022
Asus DSL-N14U-B1 1.1.2.3_805 allows remote attackers to cause a Denial of Service (DoS) via a TCP...
High
Unreviewed
CVE-2021-3254
was published
May 12, 2022
On F5 BIG-IP 15.1.x versions prior to 15.1.0.2, 14.1.x versions prior to 14.1.4.6, 13.1.x...
High
Unreviewed
CVE-2022-26372
was published
May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, 14.1.x versions...
High
Unreviewed
CVE-2022-28691
was published
May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, when the stream profile is configured on a...
High
Unreviewed
CVE-2022-28701
was published
May 6, 2022
A Denial of Service (infinite loop) vulnerability exists in Avira AntiVir Engine before 8.2.12.58...
High
Unreviewed
CVE-2013-4602
was published
May 5, 2022
cipso_v4_validate in include/net/cipso_ipv4.h in the Linux kernel before 3.11.7, when...
High
Unreviewed
CVE-2013-7470
was published
May 5, 2022
The Multicast Source Discovery Protocol (MSDP) implementation in Cisco IOS 12.0, 12.2 through 12...
High
Unreviewed
CVE-2012-0382
was published
May 4, 2022
MaraDNS before 1.3.07.12 and 1.4.x before 1.4.08 computes hash values for DNS data without...
High
Unreviewed
CVE-2012-0024
was published
May 4, 2022
A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software...
High
Unreviewed
CVE-2022-20760
was published
May 4, 2022
The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP...
High
Unreviewed
CVE-2009-1890
was published
May 2, 2022
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion...
High
Unreviewed
CVE-2009-1891
was published
May 2, 2022
ProTip!
Advisories are also available from the
GraphQL API