Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,767
Erlang
35
GitHub Actions
29
Go
2,332
Maven
5,000+
npm
3,965
NuGet
713
pip
3,748
Pub
12
RubyGems
921
Rust
975
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

942 advisories

Loading
On F5 BIG-IP 15.1.x versions prior to 15.1.0.2, 14.1.x versions prior to 14.1.4.6, 13.1.x... High Unreviewed
CVE-2022-26372 was published May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, 14.1.x versions... High Unreviewed
CVE-2022-28691 was published May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, when the stream profile is configured on a... High Unreviewed
CVE-2022-28701 was published May 6, 2022
A Denial of Service (infinite loop) vulnerability exists in Avira AntiVir Engine before 8.2.12.58... High Unreviewed
CVE-2013-4602 was published May 5, 2022
cipso_v4_validate in include/net/cipso_ipv4.h in the Linux kernel before 3.11.7, when... High Unreviewed
CVE-2013-7470 was published May 5, 2022
The Multicast Source Discovery Protocol (MSDP) implementation in Cisco IOS 12.0, 12.2 through 12... High Unreviewed
CVE-2012-0382 was published May 4, 2022
MaraDNS before 1.3.07.12 and 1.4.x before 1.4.08 computes hash values for DNS data without... High Unreviewed
CVE-2012-0024 was published May 4, 2022
A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2022-20760 was published May 4, 2022
The web browser on the Sony PLAYSTATION 3 (PS3) allows remote attackers to cause a denial of... High Unreviewed
CVE-2009-2541 was published May 2, 2022
The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP... High Unreviewed
CVE-2009-1890 was published May 2, 2022
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion... High Unreviewed
CVE-2009-1891 was published May 2, 2022
The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allow... High Unreviewed
CVE-2008-4077 was published May 2, 2022
** DISPUTED ** The Apache HTTP Server, when accessed through a TCP connection with a large... High Unreviewed
CVE-2007-0086 was published May 1, 2022
The skge driver 1.5 in Linux kernel 2.6.15 on Ubuntu does not properly use the spin_lock and... High Unreviewed
CVE-2006-7229 was published May 1, 2022
Microsoft w3wp (aka w3wp.exe) does not properly handle when the AspCompat directive is not used... High Unreviewed
CVE-2006-1364 was published May 1, 2022
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to... High Unreviewed
CVE-2003-0714 was published Apr 29, 2022
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the fsicapd... High Unreviewed
CVE-2022-28871 was published Apr 26, 2022
The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows... High Unreviewed
CVE-2012-5363 was published Apr 23, 2022
A denial of service flaw was found in the way the server component of Freeciv before 2.3.4... High Unreviewed
CVE-2012-5645 was published Apr 23, 2022
PyXML: Hash table collisions CPU usage Denial of Service High Unreviewed
CVE-2012-0877 was published Apr 23, 2022
A local file inclusion flaw was found in the way the phpLDAPadmin before 0.9.8 processed certain... High Unreviewed
CVE-2011-4082 was published Apr 22, 2022
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send... High Unreviewed
CVE-2002-20001 was published Apr 21, 2022
The affected product is vulnerable to a network-based attack by threat actors sending unimpeded... High Unreviewed
CVE-2021-43933 was published Apr 21, 2022
An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to... High Unreviewed
CVE-2022-26498 was published Apr 16, 2022
A vulnerability has been identified in SIMATIC CFU DIQ (All versions), SIMATIC CFU PA (All... High Unreviewed
CVE-2022-25622 was published Apr 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database