GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
326 advisories
Filter by severity
in OpenHarmony v3.2.2 and prior versions allow a local attacker get sensitive buffer information...
Moderate
Unreviewed
CVE-2023-46100
was published
Nov 20, 2023
An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther...
Moderate
Unreviewed
CVE-2023-31192
was published
Oct 12, 2023
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may...
Moderate
Unreviewed
CVE-2023-25585
was published
Sep 14, 2023
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may...
Moderate
Unreviewed
CVE-2023-25586
was published
Sep 14, 2023
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the ...
Moderate
Unreviewed
CVE-2023-25588
was published
Sep 14, 2023
In multiple locations of avrc, there is a possible leak of heap data due to uninitialized data....
High
Unreviewed
CVE-2023-21233
was published
Aug 15, 2023
In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to...
Moderate
Unreviewed
CVE-2023-21276
was published
Aug 15, 2023
Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-22330
was published
Aug 11, 2023
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to...
Moderate
Unreviewed
CVE-2023-3488
was published
Jul 28, 2023
A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper...
Moderate
Unreviewed
CVE-2023-36836
was published
Jul 14, 2023
The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized...
Moderate
Unreviewed
CVE-2021-0948
was published
Jul 13, 2023
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not have an MSS lower bound (e.g., it...
High
Unreviewed
CVE-2023-35847
was published
Jun 19, 2023
The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in...
Moderate
Unreviewed
CVE-2023-2747
was published
Jun 15, 2023
In readSampleData of NuMediaExtractor.cpp, there is a possible out of bounds write due to...
High
Unreviewed
CVE-2023-21127
was published
Jun 15, 2023
When reading a file, an uninitialized value could have been used as read limit. This...
High
Unreviewed
CVE-2023-32213
was published
Jun 2, 2023
A Use of Uninitialized Resource vulnerability in the Border Gateway Protocol (BGP) software of...
High
Unreviewed
CVE-2023-28967
was published
Apr 18, 2023
Information disclosure in modem due to missing NULL check while reading packets received from...
High
Unreviewed
CVE-2022-25737
was published
Apr 13, 2023
An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi...
Moderate
Unreviewed
CVE-2023-22897
was published
Apr 13, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0...
High
Unreviewed
CVE-2021-32845
was published
Feb 18, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0...
High
Unreviewed
CVE-2021-32846
was published
Feb 18, 2023
On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8, 14.1.x before...
High
Unreviewed
CVE-2023-22281
was published
Feb 1, 2023
Use of uninitialized variable in function gen_eth_recv in GNS3 dynamips 0.2.21.
High
Unreviewed
CVE-2022-47012
was published
Jan 20, 2023
** DISPUTED ** A vulnerability was found in ewxrjk sftpserver. It has been declared as...
Critical
Unreviewed
CVE-2020-36617
was published
Dec 18, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to the use of uninitialized...
High
Unreviewed
CVE-2022-2949
was published
Dec 13, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to the use of uninitialized...
High
Unreviewed
CVE-2022-2950
was published
Dec 13, 2022
ProTip!
Advisories are also available from the
GraphQL API