GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
561 advisories
Filter by severity
Keycloak vulnerable to infinite loop based Denial of Service
High
CVE-2017-2646
was published
for
org.keycloak:keycloak-core
(Maven)
Oct 18, 2018
Moderate severity vulnerability that affects org.apache.tika:tika-core
Moderate
CVE-2018-1338
was published
for
org.apache.tika:tika-core
(Maven)
Oct 17, 2018
Moderate severity vulnerability that affects io.undertow:undertow-core
Moderate
CVE-2017-2670
was published
for
io.undertow:undertow-core
(Maven)
Oct 19, 2018
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Moderate
CVE-2018-10912
was published
for
org.keycloak:keycloak-core
(Maven)
Oct 18, 2018
Denial of Service in docker2aci
Moderate
CVE-2016-8579
was published
for
github.com/appc/docker2aci
(Go)
Feb 15, 2022
Infinite loop causing Denial of Service in colors
High
GHSA-5rqg-jm4f-cqx7
was published
for
Colors
(npm)
Jan 10, 2022
Infinite loop in .Net Bond
High
CVE-2020-1469
was published
for
Bond.Core.CSharp
(NuGet)
Apr 8, 2022
Junrar vulnerable to Infinite Loop
Moderate
CVE-2018-12418
was published
for
com.github.junrar:junrar
(Maven)
Oct 17, 2018
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
High
Unreviewed
CVE-2022-23352
was published
Mar 22, 2022
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer...
Moderate
Unreviewed
CVE-2022-24191
was published
Apr 5, 2022
A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ...
High
Unreviewed
CVE-2022-21159
was published
Apr 16, 2022
An infinite loop programming error exists in the DNS server functionality of Cesanta Mongoose 6.8...
High
Unreviewed
CVE-2017-2909
was published
May 13, 2022
Loop with Unreachable Exit Condition in Apache POI
Moderate
CVE-2014-9527
was published
for
org.apache.poi:poi
(Maven)
May 17, 2022
Loop with Unreachable Exit Condition in Apache PDFBox
Moderate
CVE-2018-8036
was published
for
org.apache.pdfbox:pdfbox
(Maven)
May 13, 2022
XStream can cause a Denial of Service
Moderate
CVE-2021-39140
was published
for
com.thoughtworks.xstream:xstream
(Maven)
Aug 25, 2021
Excessive Iteration in Compress
High
CVE-2021-35515
was published
for
org.apache.commons:commons-compress
(Maven)
Aug 2, 2021
Infinite Loop in Apache PDFBox
Moderate
CVE-2021-31812
was published
for
org.apache.pdfbox:pdfbox
(Maven)
Jun 15, 2021
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the...
Moderate
Unreviewed
CVE-2022-4104
was published
Nov 28, 2022
Uncaught Exception in jsoup
High
CVE-2021-37714
was published
for
org.jsoup:jsoup
(Maven)
Aug 23, 2021
Loop with Unreachable Exit Condition in Apache Thrift
High
CVE-2019-0205
was published
for
org.apache.thrift:libthrift
(Maven)
May 24, 2022
long running loops in grant table handling In order to properly monitor resource use, Xen...
Moderate
Unreviewed
CVE-2021-28698
was published
May 24, 2022
A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device...
Moderate
Unreviewed
CVE-2021-20255
was published
May 24, 2022
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom...
High
Unreviewed
CVE-2021-27918
was published
May 24, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software...
High
Unreviewed
CVE-2021-1252
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API