GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
738 advisories
Filter by severity
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled...
Moderate
Unreviewed
CVE-2021-36310
was published
Nov 21, 2021
The Reviews Plus WordPress plugin before 1.2.14 does not validate the submitted rating, allowing...
Moderate
Unreviewed
CVE-2021-24894
was published
Nov 24, 2021
Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s...
Moderate
Unreviewed
CVE-2021-42120
was published
Dec 1, 2021
A vulnerability found in UniFi Switch firmware Version 5.43.35 and earlier allows a malicious...
Moderate
Unreviewed
CVE-2021-44527
was published
Dec 8, 2021
An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions...
Moderate
Unreviewed
CVE-2021-39939
was published
Dec 14, 2021
A vulnerable regular expression pattern in GitLab CE/EE since version 8.15 before 14.3.6, all...
Moderate
Unreviewed
CVE-2021-39938
was published
Dec 14, 2021
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14...
Moderate
Unreviewed
CVE-2021-39932
was published
Dec 14, 2021
In getOffsetBeforeAfter of TextLine.java, there is a possible denial of service due to resource...
Moderate
Unreviewed
CVE-2021-0993
was published
Dec 16, 2021
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2021-43246
was published
Dec 16, 2021
A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted...
Moderate
Unreviewed
CVE-2021-3622
was published
Dec 24, 2021
Improper validation of LLM utility timers availability can lead to denial of service in...
Moderate
Unreviewed
CVE-2021-30348
was published
Jan 4, 2022
In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c....
Moderate
Unreviewed
CVE-2021-44590
was published
Jan 7, 2022
Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not...
Moderate
Unreviewed
CVE-2020-9060
was published
Jan 11, 2022
Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible...
Moderate
Unreviewed
CVE-2020-9059
was published
Jan 11, 2022
DirectX Graphics Kernel File Denial of Service Vulnerability.
Moderate
Unreviewed
CVE-2022-21918
was published
Jan 12, 2022
Windows Hyper-V Denial of Service Vulnerability.
Moderate
Unreviewed
CVE-2022-21847
was published
Jan 12, 2022
Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability.
Moderate
Unreviewed
CVE-2022-21839
was published
Jan 12, 2022
A denial of service vulnerability in GitLab CE/EE affecting all versions starting from 12.0...
Moderate
Unreviewed
CVE-2021-39942
was published
Jan 19, 2022
Mattermost 6.2 and earlier fails to sufficiently process a specifically crafted GIF file when it...
Moderate
Unreviewed
CVE-2021-37865
was published
Jan 19, 2022
An Uncontrolled Resource Consumption vulnerability in the handling of IPv6 neighbor state change...
Moderate
Unreviewed
CVE-2022-22155
was published
Jan 20, 2022
Due to the lack of media file checks before rendering, it was possible for an attacker to cause...
Moderate
Unreviewed
CVE-2022-22820
was published
Jan 21, 2022
On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions...
Moderate
Unreviewed
CVE-2022-23030
was published
Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all...
Moderate
Unreviewed
CVE-2022-23023
was published
Jan 26, 2022
save_window_function_values in MariaDB before 10.6.3 allows an application crash because of...
Moderate
Unreviewed
CVE-2021-46658
was published
Jan 31, 2022
get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses...
Moderate
Unreviewed
CVE-2021-46657
was published
Jan 31, 2022
ProTip!
Advisories are also available from the
GraphQL API