Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

180 advisories

Loading
Apache Tika vulnerable to uncontrolled memory consumption Moderate
CVE-2022-25169 was published for org.apache.tika:tika (Maven) May 17, 2022
Apache Tomcat Denial of Service vulnerability Moderate
CVE-2013-4322 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Integer Overflow or Wraparound in Apache Tomcat Moderate
CVE-2014-0075 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Uncontrolled Resource Consumption in Apache Tomcat High
CVE-2014-0230 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Apache OpenMeetings vulnerable to Uncontrolled Resource Consumption High
CVE-2017-7684 was published for org.apache.openmeetings:openmeetings-parent (Maven) May 13, 2022
JBossWS vulnerable to uncontrolled recursion Low
CVE-2011-1483 was published for org.jboss.ws:jbossws-common (Maven) May 13, 2022
Red Hat Wildfly DoS High
CVE-2016-9589 was published for org.wildfly:wildfly-undertow (Maven) May 13, 2022
Uncontrolled Resource Consumption in Undertow Moderate
CVE-2018-1114 was published for io.undertow:undertow-core (Maven) May 13, 2022
Command Injection in VIVO Vitro High
CVE-2019-6986 was published for org.vivoweb:vitro-project (Maven) May 13, 2022
Uncontrolled Resource Consumption in Artemis and HornetQ High
CVE-2017-12174 was published for org.apache.activemq:artemis-native (Maven) May 13, 2022
Uncontrolled Resource Consumption in Apache CXF Moderate
CVE-2014-0110 was published for org.apache.cxf:cxf-core (Maven) May 13, 2022
sunSUNQ
Uncontrolled Resource Consumption in Apache CXF Moderate
CVE-2014-0109 was published for org.apache.cxf:cxf-core (Maven) May 13, 2022
sunSUNQ
Uncontrolled Resource Consumption in Apache ZooKeeper High
CVE-2017-5637 was published for org.apache.zookeeper:zookeeper (Maven) May 13, 2022
Apache Geronimo Hash Collisions Cause DoS High
CVE-2011-5034 was published for org.apache.geronimo:geronimo (Maven) May 13, 2022
Uncontrolled Resource Consumption in Apache Commons Compress Moderate
CVE-2012-2098 was published for org.apache.commons:commons-compress (Maven) May 13, 2022
MarkLee131
Apache Tomcat EncryptInterceptor error leads to Uncontrolled Resource Consumption High
CVE-2022-29885 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
Denial of Service in Apache POI Moderate
CVE-2012-0213 was published for org.apache.poi:poi (Maven) May 4, 2022
Apache Tomcat Denial of Service via Malformed Request Headers Moderate
CVE-2009-0033 was published for org.apache.tomcat:tomcat (Maven) May 2, 2022
Apache Tomcat DoS Via Requests Including Null Characters Moderate
CVE-2002-0935 was published for org.apache.tomcat:tomcat (Maven) Apr 30, 2022
Apache James Denial of Service Moderate
CVE-2004-2650 was published for org.apache.james:james-server (Maven) Apr 29, 2022
Jetty HTTP Server Denial of Service vulnerability Moderate
CVE-2004-2381 was published for org.mortbay.jetty:jetty (Maven) Apr 29, 2022
Apache Tomcat Denial of Service vulnerability in the Catalina package Moderate
CVE-2003-0866 was published for org.apache.tomcat:tomcat (Maven) Apr 29, 2022
Jakarta Tomcat Denial of Service vulnerability Moderate
CVE-2003-0045 was published for org.apache.tomcat:tomcat (Maven) Apr 29, 2022
OutOfMemory Exception by specifically crafted processing instruction in NekoHtml Parser High
CVE-2022-29546 was published for net.sourceforge.htmlunit:neko-htmlunit (Maven) Apr 26, 2022
kurt-r2c
Denial of service in Spring Security OAuth2 Moderate
CVE-2022-22969 was published for org.springframework.security.oauth:spring-security-oauth2 (Maven) Apr 22, 2022
ebickle SunBK201
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database