GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
326 advisories
Filter by severity
Memory management vulnerability in the Gralloc module
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2024-36503
was published
Jun 14, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack...
Moderate
Unreviewed
CVE-2024-32910
was published
Jun 13, 2024
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead...
High
Unreviewed
CVE-2024-32906
was published
Jun 13, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized...
Moderate
Unreviewed
CVE-2024-29785
was published
Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible...
Moderate
Unreviewed
CVE-2024-29780
was published
Jun 13, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and...
Moderate
Unreviewed
CVE-2024-36454
was published
Jun 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
cpumap: Zero-initialise...
Moderate
Unreviewed
CVE-2024-27431
was published
May 17, 2024
HDF5 Library through 1.14.3 may attempt to dereference uninitialized values in h5tools_str_sprint...
Moderate
Unreviewed
CVE-2024-32606
was published
May 14, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-34999
was published
May 8, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-35000
was published
May 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
fork: defer linking file vma...
High
Unreviewed
CVE-2024-27022
was published
May 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_osf:...
Moderate
Unreviewed
CVE-2022-48654
was published
Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
do_sys_name_to_handle(): use...
Moderate
Unreviewed
CVE-2024-26901
was published
Apr 17, 2024
The MarkStack assignment operator, part of the JavaScript engine, could access uninitialized...
Moderate
Unreviewed
CVE-2024-3862
was published
Apr 16, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26209
was published
Apr 9, 2024
Windows Mobile Hotspot Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26220
was published
Apr 9, 2024
there is a possible Information Disclosure due to uninitialized data. This could lead to local...
Moderate
Unreviewed
CVE-2024-29745
was published
Apr 5, 2024
crayon: ObjectPool creates uninitialized memory when freeing objects
High
GHSA-xfhw-6mc4-mgxf
was published
for
crayon
(Rust)
Apr 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: usb: smsc75xx: Fix...
Moderate
Unreviewed
CVE-2023-52528
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
dccp: fix dccp_v4_err()...
Moderate
Unreviewed
CVE-2023-52577
was published
Mar 3, 2024
When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause...
High
Unreviewed
CVE-2024-23314
was published
Feb 14, 2024
Windows CoreMessaging Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-20694
was published
Jan 9, 2024
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.20), CP...
Moderate
Unreviewed
CVE-2023-42797
was published
Jan 9, 2024
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products...
Moderate
Unreviewed
CVE-2023-4489
was published
Dec 15, 2023
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537...
High
Unreviewed
CVE-2023-31275
was published
Nov 27, 2023
ProTip!
Advisories are also available from the
GraphQL API