GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
755 advisories
Filter by severity
SAP NetWeaver Application Server for ABAP (Kernel) and ABAP Platform (Kernel) - versions KERNEL 7...
High
Unreviewed
CVE-2022-22543
was published
Feb 11, 2022
The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the...
High
Unreviewed
CVE-2022-22780
was published
Feb 11, 2022
In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts...
High
Unreviewed
CVE-2021-45960
was published
Feb 10, 2022
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of...
High
Unreviewed
CVE-2022-22724
was published
Feb 6, 2022
MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements...
High
Unreviewed
CVE-2021-46668
was published
Feb 2, 2022
A denial of service vulnerability exists in the cgiserver.cgi session creation functionality of...
High
Unreviewed
CVE-2021-40406
was published
Jan 29, 2022
A denial of service vulnerability exists in the netserver recv_command functionality of reolink...
High
Unreviewed
CVE-2022-21801
was published
Jan 29, 2022
On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a...
High
Unreviewed
CVE-2022-23015
was published
Jan 26, 2022
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all...
High
Unreviewed
CVE-2022-23024
was published
Jan 26, 2022
Requests may be used to interrupt the normal operation of the device. When exploited, Fresenius...
High
Unreviewed
CVE-2021-23236
was published
Jan 22, 2022
A vulnerability in the NETISR network queue functionality of Juniper Networks Junos OS kernel...
High
Unreviewed
CVE-2022-22159
was published
Jan 20, 2022
An Uncontrolled Resource Consumption vulnerability in the kernel of Juniper Networks Junos OS...
High
Unreviewed
CVE-2022-22161
was published
Jan 20, 2022
The Background service in Allwinner R818 SoC Android Q SDK V1.0 is used to manage background...
High
Unreviewed
CVE-2021-38788
was published
Jan 20, 2022
Possible denial of service due to out of memory while processing RRC and NAS OTA message in...
High
Unreviewed
CVE-2021-30301
was published
Jan 14, 2022
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848,...
High
Unreviewed
CVE-2022-21843
was published
Jan 12, 2022
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843,...
High
Unreviewed
CVE-2022-21848
was published
Jan 12, 2022
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37...
High
Unreviewed
CVE-2021-46149
was published
Jan 11, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing...
High
Unreviewed
CVE-2021-24893
was published
Jan 4, 2022
DirectX Graphics Kernel File Denial of Service Vulnerability
High
Unreviewed
CVE-2021-43219
was published
Dec 16, 2021
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,...
High
Unreviewed
CVE-2021-38951
was published
Dec 10, 2021
A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and...
High
Unreviewed
CVE-2021-41014
was published
Dec 9, 2021
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular...
High
Unreviewed
CVE-2021-44686
was published
Dec 8, 2021
An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22...
High
Unreviewed
CVE-2021-22956
was published
Dec 8, 2021
A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22...
High
Unreviewed
CVE-2021-22955
was published
Dec 8, 2021
ProTip!
Advisories are also available from the
GraphQL API