GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
326 advisories
Filter by severity
The Flags module in Liferay Portal 7.3.1 and earlier, and Liferay DXP 7.0 before fix pack 96, 7.1...
Moderate
Unreviewed
CVE-2021-33320
was published
May 24, 2022
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a...
Moderate
Unreviewed
CVE-2020-19464
was published
May 24, 2022
An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a...
Moderate
Unreviewed
CVE-2020-19463
was published
May 24, 2022
basic/unit-name.c in systemd 220 through 248 has a Memory Allocation with an Excessive Size Value...
Moderate
Unreviewed
CVE-2021-33910
was published
May 24, 2022
A vulnerability has been identified in RWG1.M12 (All versions < V1.16.16), RWG1.M12D (All...
Moderate
Unreviewed
CVE-2021-25671
was published
May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as...
Moderate
Unreviewed
CVE-2020-28200
was published
May 24, 2022
A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to...
Moderate
Unreviewed
CVE-2020-14336
was published
May 24, 2022
A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined...
Moderate
Unreviewed
CVE-2021-3527
was published
May 24, 2022
There is a resource management error vulnerability in the verisions V500R001C60SPC500,...
Moderate
Unreviewed
CVE-2021-22360
was published
May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When...
Moderate
Unreviewed
CVE-2021-22210
was published
May 24, 2022
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12...
Moderate
Unreviewed
CVE-2021-22207
was published
May 24, 2022
A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300...
Moderate
Unreviewed
CVE-2021-0242
was published
May 24, 2022
A vulnerability in the handling of internal resources necessary to bring up a large number of...
Moderate
Unreviewed
CVE-2021-0224
was published
May 24, 2022
There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker...
Moderate
Unreviewed
CVE-2021-3479
was published
May 24, 2022
There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An...
Moderate
Unreviewed
CVE-2021-3478
was published
May 24, 2022
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part...
Moderate
Unreviewed
CVE-2021-28038
was published
May 24, 2022
An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net,...
Moderate
Unreviewed
CVE-2021-26931
was published
May 24, 2022
NFStream Local Denial of Service (DoS)
Moderate
CVE-2020-25340
was published
for
nfstream
(pip)
May 24, 2022
A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions...
Moderate
Unreviewed
CVE-2021-25666
was published
May 24, 2022
Moodle Client side denial of service via personal message
Moderate
CVE-2021-20185
was published
for
moodle/moodle
(Composer)
May 24, 2022
A vulnerability in the web UI of Cisco Umbrella could allow an unauthenticated, remote attacker...
Moderate
Unreviewed
CVE-2021-1350
was published
May 24, 2022
Excessive memory allocation in graph URLs leads to denial of service in Jenkins
Moderate
CVE-2021-21607
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
An attacker-controlled memory allocation size can be passed to the C++ new operator in the...
Moderate
Unreviewed
CVE-2020-5806
was published
May 24, 2022
An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are...
Moderate
Unreviewed
CVE-2020-29568
was published
May 24, 2022
An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping...
Moderate
Unreviewed
CVE-2020-29570
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API