GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
197 advisories
Filter by severity
libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be...
High
Unreviewed
CVE-2022-27781
was published
Jun 3, 2022
TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via...
High
Unreviewed
CVE-2021-42260
was published
May 24, 2022
An issue was discovered in MediaWiki through 1.36.2. A parser function related to loop control...
High
Unreviewed
CVE-2021-42040
was published
May 24, 2022
An infinite loop in Open Robotics ros_comm XMLRPC server in ROS Melodic through 1.4.11 and ROS...
High
Unreviewed
CVE-2021-37146
was published
May 24, 2022
Loop with unreachable exit condition may occur due to improper handling of unsupported input in...
High
Unreviewed
CVE-2021-1914
was published
May 24, 2022
An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The...
High
Unreviewed
CVE-2021-31400
was published
May 24, 2022
The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial...
High
Unreviewed
CVE-2021-27565
was published
May 24, 2022
In Contiki 3.0, potential nonterminating acknowledgment loops exist in the Telnet service. When...
High
Unreviewed
CVE-2021-38311
was published
May 24, 2022
In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to...
High
Unreviewed
CVE-2021-38387
was published
May 24, 2022
Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service...
High
Unreviewed
CVE-2021-22235
was published
May 24, 2022
An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special...
High
Unreviewed
CVE-2021-36125
was published
May 24, 2022
Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via...
High
Unreviewed
CVE-2021-22222
was published
May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl....
High
Unreviewed
CVE-2021-27385
was published
May 24, 2022
On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, malformed HTTP/2 requests may...
High
Unreviewed
CVE-2021-23009
was published
May 24, 2022
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy.
High
Unreviewed
CVE-2019-25040
was published
May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All...
High
Unreviewed
CVE-2021-25663
was published
May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All...
High
Unreviewed
CVE-2021-25664
was published
May 24, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software...
High
Unreviewed
CVE-2021-1252
was published
May 24, 2022
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom...
High
Unreviewed
CVE-2021-27918
was published
May 24, 2022
picoquic (before 3rd of July 2020) allows attackers to cause a denial of service (infinite loop)...
High
Unreviewed
CVE-2020-24944
was published
May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the...
High
Unreviewed
CVE-2020-36227
was published
May 24, 2022
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, a large HTTP POST request sent to the...
High
Unreviewed
CVE-2020-28095
was published
May 24, 2022
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. When an unsupported TCP option...
High
Unreviewed
CVE-2020-24337
was published
May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack...
High
Unreviewed
CVE-2020-13984
was published
May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack...
High
Unreviewed
CVE-2020-13986
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API