Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

229 advisories

Loading
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for... High Unreviewed
CVE-2021-1308 was published May 24, 2022
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for... High Unreviewed
CVE-2021-1309 was published May 24, 2022
Denial of service while processing RTCP packets containing multiple SDES reports due to memory... High Unreviewed
CVE-2020-11255 was published May 24, 2022
** DISPUTED ** Module/Settings/UserExport.php in Friendica through 2021.01 allows settings... High Unreviewed
CVE-2021-30141 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leak in the show-status CGI handler... High Unreviewed
CVE-2021-20210 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leak when client tags are active... High Unreviewed
CVE-2021-20211 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leak if multiple filters are... High Unreviewed
CVE-2021-20212 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the client-tags CGI... High Unreviewed
CVE-2021-20214 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the show-status CGI... High Unreviewed
CVE-2021-20215 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when... High Unreviewed
CVE-2021-20216 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks when a response is buffered... High Unreviewed
CVE-2020-35502 was published May 24, 2022
A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated,... High Unreviewed
CVE-2021-1387 was published May 24, 2022
Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet... High Unreviewed
CVE-2021-22173 was published May 24, 2022
Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could... High Unreviewed
CVE-2021-1313 was published May 24, 2022
Some ZTE products have a DoS vulnerability. Due to the improper handling of memory release in... High Unreviewed
CVE-2021-21723 was published May 24, 2022
A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated,... High Unreviewed
CVE-2021-1353 was published May 24, 2022
K7TSMngr.exe in K7Computing K7AntiVirus Premium 15.1.0.53 has a Memory Leak. High Unreviewed
CVE-2018-11246 was published May 24, 2022
smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to... High Unreviewed
CVE-2020-35679 was published May 24, 2022
In certain configurations on version 13.1.3.4, when a BIG-IP AFM HTTP security profile is applied... High Unreviewed
CVE-2020-27713 was published May 24, 2022
Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially... High Unreviewed
CVE-2019-14559 was published May 24, 2022
A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2020-3572 was published May 24, 2022
A vulnerability in the IP fragment-handling implementation of Cisco Adaptive Security Appliance ... High Unreviewed
CVE-2020-3373 was published May 24, 2022
A denial of service vulnerability exists in Microsoft Outlook software when the software fails to... High Unreviewed
CVE-2020-16949 was published May 24, 2022
On Juniper Networks Junos OS devices, a specific SNMP OID poll causes a memory leak which over... High Unreviewed
CVE-2020-1683 was published May 24, 2022
A memory leak in the TFTP service in B&R Automation Runtime versions <N4.26, <N4.34, <F4.45, <E4... High Unreviewed
CVE-2020-11637 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database