GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,018
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,069
Maven 5,241
npm 3,744
NuGet 668
pip 3,429
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,526

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

138 advisories

Filter by severity

Sort by

Least recently updated

there is a possible Information Disclosure due to uninitialized data. This could lead to local... Moderate Unreviewed

CVE-2024-29745 was published Apr 5, 2024

In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccp_v4_err()... Moderate Unreviewed

CVE-2023-52577 was published Mar 3, 2024

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Fix... Moderate Unreviewed

CVE-2023-52528 was published Mar 3, 2024

In the Linux kernel, the following vulnerability has been resolved: crypto: qat -... Moderate Unreviewed

CVE-2021-47056 was published Mar 1, 2024

Windows CoreMessaging Information Disclosure Vulnerability Moderate Unreviewed

CVE-2024-20694 was published Jan 9, 2024

A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.20), CP... Moderate Unreviewed

CVE-2023-42797 was published Jan 9, 2024

The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products... Moderate Unreviewed

CVE-2023-4489 was published Dec 15, 2023

in OpenHarmony v3.2.2 and prior versions allow a local attacker get sensitive buffer information... Moderate Unreviewed

CVE-2023-46100 was published Nov 20, 2023

An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther... Moderate Unreviewed

CVE-2023-31192 was published Oct 12, 2023

A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the ... Moderate Unreviewed

CVE-2023-25588 was published Sep 14, 2023

A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may... Moderate Unreviewed

CVE-2023-25585 was published Sep 14, 2023

A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may... Moderate Unreviewed

CVE-2023-25586 was published Sep 14, 2023

In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to... Moderate Unreviewed

CVE-2023-21276 was published Aug 15, 2023

Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed

CVE-2023-22330 was published Aug 11, 2023

Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to... Moderate Unreviewed

CVE-2023-3488 was published Jul 28, 2023

A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper... Moderate Unreviewed

CVE-2023-36836 was published Jul 14, 2023

The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized... Moderate Unreviewed

CVE-2021-0948 was published Jul 13, 2023

The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in... Moderate Unreviewed

CVE-2023-2747 was published Jun 15, 2023

An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi... Moderate Unreviewed

CVE-2023-22897 was published Apr 13, 2023

A vulnerability classified as problematic has been found in Linux Kernel. This affects the... Moderate Unreviewed

CVE-2022-3642 was published Oct 21, 2022

drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive... Moderate Unreviewed

CVE-2022-40768 was published Sep 19, 2022

In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to... Moderate Unreviewed

CVE-2021-0887 was published Aug 25, 2022

In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to... Moderate Unreviewed

CVE-2021-0698 was published Aug 25, 2022

An absence of variable initialization in ICCC TA prior to SMR Aug-2022 Release 1 allows local... Moderate Unreviewed

CVE-2022-33716 was published Aug 6, 2022

The libtiff-4.0.3-35.amzn2.0.1 package for LibTIFF on Amazon Linux 2 allows attackers to cause a... Moderate Unreviewed

CVE-2022-34266 was published Jul 20, 2022

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

138 advisories