Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

755 advisories

Loading
SAP NetWeaver Application Server for ABAP (Kernel) and ABAP Platform (Kernel) - versions KERNEL 7... High Unreviewed
CVE-2022-22543 was published Feb 11, 2022
The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the... High Unreviewed
CVE-2022-22780 was published Feb 11, 2022
In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts... High Unreviewed
CVE-2021-45960 was published Feb 10, 2022
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of... High Unreviewed
CVE-2022-22724 was published Feb 6, 2022
MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements... High Unreviewed
CVE-2021-46668 was published Feb 2, 2022
A denial of service vulnerability exists in the cgiserver.cgi session creation functionality of... High Unreviewed
CVE-2021-40406 was published Jan 29, 2022
A denial of service vulnerability exists in the netserver recv_command functionality of reolink... High Unreviewed
CVE-2022-21801 was published Jan 29, 2022
On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a... High Unreviewed
CVE-2022-23015 was published Jan 26, 2022
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all... High Unreviewed
CVE-2022-23024 was published Jan 26, 2022
Requests may be used to interrupt the normal operation of the device. When exploited, Fresenius... High Unreviewed
CVE-2021-23236 was published Jan 22, 2022
A vulnerability in the NETISR network queue functionality of Juniper Networks Junos OS kernel... High Unreviewed
CVE-2022-22159 was published Jan 20, 2022
An Uncontrolled Resource Consumption vulnerability in the kernel of Juniper Networks Junos OS... High Unreviewed
CVE-2022-22161 was published Jan 20, 2022
The Background service in Allwinner R818 SoC Android Q SDK V1.0 is used to manage background... High Unreviewed
CVE-2021-38788 was published Jan 20, 2022
Possible denial of service due to out of memory while processing RRC and NAS OTA message in... High Unreviewed
CVE-2021-30301 was published Jan 14, 2022
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848,... High Unreviewed
CVE-2022-21843 was published Jan 12, 2022
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843,... High Unreviewed
CVE-2022-21848 was published Jan 12, 2022
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... High Unreviewed
CVE-2021-46149 was published Jan 11, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
DirectX Graphics Kernel File Denial of Service Vulnerability High Unreviewed
CVE-2021-43219 was published Dec 16, 2021
SymCrypt Denial of Service Vulnerability High Unreviewed
CVE-2021-43228 was published Dec 16, 2021
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed
CVE-2021-38951 was published Dec 10, 2021
A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and... High Unreviewed
CVE-2021-41014 was published Dec 9, 2021
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular... High Unreviewed
CVE-2021-44686 was published Dec 8, 2021
An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22... High Unreviewed
CVE-2021-22956 was published Dec 8, 2021
A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22... High Unreviewed
CVE-2021-22955 was published Dec 8, 2021
ProTip! Advisories are also available from the GraphQL API