GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
342 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_osf:...
Moderate
Unreviewed
CVE-2022-48654
was published
Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
do_sys_name_to_handle(): use...
Moderate
Unreviewed
CVE-2024-26901
was published
Apr 17, 2024
The MarkStack assignment operator, part of the JavaScript engine, could access uninitialized...
Moderate
Unreviewed
CVE-2024-3862
was published
Apr 16, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26209
was published
Apr 9, 2024
Windows Mobile Hotspot Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26220
was published
Apr 9, 2024
there is a possible Information Disclosure due to uninitialized data. This could lead to local...
Moderate
Unreviewed
CVE-2024-29745
was published
Apr 5, 2024
crayon: ObjectPool creates uninitialized memory when freeing objects
High
GHSA-xfhw-6mc4-mgxf
was published
for
crayon
(Rust)
Apr 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: usb: smsc75xx: Fix...
Moderate
Unreviewed
CVE-2023-52528
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
dccp: fix dccp_v4_err()...
Moderate
Unreviewed
CVE-2023-52577
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
crypto: qat -...
Moderate
Unreviewed
CVE-2021-47056
was published
Mar 1, 2024
Helm's Missing YAML Content Leads To Panic
High
CVE-2024-26147
was published
for
helm.sh/helm/v3
(Go)
Feb 22, 2024
When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause...
High
Unreviewed
CVE-2024-23314
was published
Feb 14, 2024
Windows CoreMessaging Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-20694
was published
Jan 9, 2024
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.20), CP...
Moderate
Unreviewed
CVE-2023-42797
was published
Jan 9, 2024
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products...
Moderate
Unreviewed
CVE-2023-4489
was published
Dec 15, 2023
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537...
High
Unreviewed
CVE-2023-31275
was published
Nov 27, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker get sensitive buffer information...
Moderate
Unreviewed
CVE-2023-46100
was published
Nov 20, 2023
An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther...
Moderate
Unreviewed
CVE-2023-31192
was published
Oct 12, 2023
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may...
Moderate
Unreviewed
CVE-2023-25585
was published
Sep 14, 2023
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may...
Moderate
Unreviewed
CVE-2023-25586
was published
Sep 14, 2023
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the ...
Moderate
Unreviewed
CVE-2023-25588
was published
Sep 14, 2023
In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to...
Moderate
Unreviewed
CVE-2023-21276
was published
Aug 15, 2023
In multiple locations of avrc, there is a possible leak of heap data due to uninitialized data....
High
Unreviewed
CVE-2023-21233
was published
Aug 15, 2023
Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-22330
was published
Aug 11, 2023
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to...
Moderate
Unreviewed
CVE-2023-3488
was published
Jul 28, 2023
ProTip!
Advisories are also available from the
GraphQL API