Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,383 advisories

Loading
Windows User Account Profile Picture Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-22002 was published Feb 10, 2022
Windows Common Log File System Driver Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-22710 was published Feb 10, 2022
Windows Hyper-V Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-22712 was published Feb 10, 2022
Stack overflow in TensorFlow High
CVE-2022-23591 was published for tensorflow (pip) Feb 9, 2022
Regular Expression Denial of Service in djvalidator High
CVE-2020-7779 was published for djvalidator (npm) Feb 9, 2022
Uncontrolled Resource Consumption in Apache Tomcat High
CVE-2020-11996 was published for org.apache.tomcat:tomcat (Maven) Feb 9, 2022
sunSUNQ
ua-parser-js Regular Expression Denial of Service vulnerability High
CVE-2020-7793 was published for ua-parser-js (npm) Feb 9, 2022
Resource exhaustion in engine.io High
CVE-2020-36048 was published for engine.io (npm) Feb 9, 2022
darrachequesne G-Rath
Denial of service in Undertow High
CVE-2020-27782 was published for io.undertow:undertow-core (Maven) Feb 9, 2022
Abort caused by allocating a vector that is too large in Tensorflow Moderate
CVE-2022-23580 was published for tensorflow (pip) Feb 7, 2022
A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of... High Unreviewed
CVE-2022-22724 was published Feb 6, 2022
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS) High
CVE-2022-23913 was published for org.apache.activemq:artemis-core-client (Maven) Feb 6, 2022
MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements... High Unreviewed
CVE-2021-46668 was published Feb 2, 2022
Denial of Service by injecting highly recursive collections or maps in XStream High
CVE-2021-43859 was published for com.thoughtworks.xstream:xstream (Maven) Feb 1, 2022
r00t4dm
Junrar vulnerable to infinite loop via extracting carefully crafted RAR archive High
CVE-2022-23596 was published for com.github.junrar:junrar (Maven) Feb 1, 2022
occia ZanderHuang
Han0nly
get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses... Moderate Unreviewed
CVE-2021-46657 was published Jan 31, 2022
save_window_function_values in MariaDB before 10.6.3 allows an application crash because of... Moderate Unreviewed
CVE-2021-46658 was published Jan 31, 2022
A denial of service vulnerability exists in the cgiserver.cgi session creation functionality of... High Unreviewed
CVE-2021-40406 was published Jan 29, 2022
A denial of service vulnerability exists in the netserver recv_command functionality of reolink... High Unreviewed
CVE-2022-21801 was published Jan 29, 2022
Denial of Service Vulnerability in next.js Moderate
CVE-2022-21721 was published for next (npm) Jan 28, 2022
ijjk
Denial of Service in graphql-go Moderate
CVE-2022-21708 was published for github.com/graph-gophers/graphql-go (Go) Jan 27, 2022
jupenur
Denial of service in sidekiq High
CVE-2022-23837 was published for sidekiq (RubyGems) Jan 27, 2022
On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a... High Unreviewed
CVE-2022-23015 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all... Moderate Unreviewed
CVE-2022-23023 was published Jan 26, 2022
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all... High Unreviewed
CVE-2022-23024 was published Jan 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database