Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

326 advisories

Loading
The Flags module in Liferay Portal 7.3.1 and earlier, and Liferay DXP 7.0 before fix pack 96, 7.1... Moderate Unreviewed
CVE-2021-33320 was published May 24, 2022
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19464 was published May 24, 2022
An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a... Moderate Unreviewed
CVE-2020-19463 was published May 24, 2022
basic/unit-name.c in systemd 220 through 248 has a Memory Allocation with an Excessive Size Value... Moderate Unreviewed
CVE-2021-33910 was published May 24, 2022
A vulnerability has been identified in RWG1.M12 (All versions < V1.16.16), RWG1.M12D (All... Moderate Unreviewed
CVE-2021-25671 was published May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as... Moderate Unreviewed
CVE-2020-28200 was published May 24, 2022
A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to... Moderate Unreviewed
CVE-2020-14336 was published May 24, 2022
A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined... Moderate Unreviewed
CVE-2021-3527 was published May 24, 2022
There is a resource management error vulnerability in the verisions V500R001C60SPC500,... Moderate Unreviewed
CVE-2021-22360 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When... Moderate Unreviewed
CVE-2021-22210 was published May 24, 2022
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12... Moderate Unreviewed
CVE-2021-22207 was published May 24, 2022
A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300... Moderate Unreviewed
CVE-2021-0242 was published May 24, 2022
A vulnerability in the handling of internal resources necessary to bring up a large number of... Moderate Unreviewed
CVE-2021-0224 was published May 24, 2022
There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker... Moderate Unreviewed
CVE-2021-3479 was published May 24, 2022
There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An... Moderate Unreviewed
CVE-2021-3478 was published May 24, 2022
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part... Moderate Unreviewed
CVE-2021-28038 was published May 24, 2022
An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net,... Moderate Unreviewed
CVE-2021-26931 was published May 24, 2022
NFStream Local Denial of Service (DoS) Moderate
CVE-2020-25340 was published for nfstream (pip) May 24, 2022
A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions... Moderate Unreviewed
CVE-2021-25666 was published May 24, 2022
Moodle Client side denial of service via personal message Moderate
CVE-2021-20185 was published for moodle/moodle (Composer) May 24, 2022
A vulnerability in the web UI of Cisco Umbrella could allow an unauthenticated, remote attacker... Moderate Unreviewed
CVE-2021-1350 was published May 24, 2022
Excessive memory allocation in graph URLs leads to denial of service in Jenkins Moderate
CVE-2021-21607 was published for org.jenkins-ci.main:jenkins-core (Maven) May 24, 2022
NotMyFault
An attacker-controlled memory allocation size can be passed to the C++ new operator in the... Moderate Unreviewed
CVE-2020-5806 was published May 24, 2022
An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are... Moderate Unreviewed
CVE-2020-29568 was published May 24, 2022
An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping... Moderate Unreviewed
CVE-2020-29570 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database