GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
97 advisories
Filter by severity
A carefully crafted request body can cause a read to a random memory area which could cause the...
High
Unreviewed
CVE-2022-22719
was published
Mar 15, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2022-22657
was published
Mar 19, 2022
A improper initialization in Fortinet FortiClient (Windows) version 6.0.10 and below, version 6.2...
High
Unreviewed
CVE-2021-44169
was published
Apr 7, 2022
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco...
High
Unreviewed
CVE-2022-20731
was published
Apr 16, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004...
High
Unreviewed
CVE-2022-26722
was published
May 27, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004...
High
Unreviewed
CVE-2022-26721
was published
May 27, 2022
Due to a mishandled error, it is possible to leave the DRTM UApp in a partially initialized state...
High
Unreviewed
CVE-2021-26353
was published
May 11, 2022
Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine...
High
Unreviewed
CVE-2022-29695
was published
Jun 3, 2022
In Boot in all Android releases from CAF using the Linux kernel, a Use of Uninitialized Variable...
High
Unreviewed
CVE-2014-9942
was published
May 17, 2022
Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11...
High
Unreviewed
CVE-2022-37334
was published
Nov 11, 2022
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until...
High
Unreviewed
CVE-1999-0993
was published
Apr 30, 2022
Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076...
High
Unreviewed
CVE-2022-27493
was published
Aug 19, 2022
Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076...
High
Unreviewed
CVE-2022-32579
was published
Aug 19, 2022
Acronis True Image 2021 includes an OpenSSL component that specifies an OPENSSLDIR variable as a...
High
Unreviewed
CVE-2020-10139
was published
May 24, 2022
Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex...
High
Unreviewed
CVE-2020-3573
was published
May 24, 2022
In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution...
High
Unreviewed
CVE-2020-0438
was published
May 24, 2022
Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an...
High
Unreviewed
CVE-2020-12336
was published
May 24, 2022
Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl...
High
Unreviewed
CVE-2020-10143
was published
May 24, 2022
A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS...
High
Unreviewed
CVE-2020-27950
was published
May 24, 2022
Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSSL component that specifies an...
High
Unreviewed
CVE-2020-10138
was published
May 24, 2022
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack...
High
Unreviewed
CVE-2020-28019
was published
May 24, 2022
Softaculous before 5.5.7 is affected by a code execution vulnerability because of External...
High
Unreviewed
CVE-2020-26886
was published
May 24, 2022
In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to...
High
Unreviewed
CVE-2021-0435
was published
May 24, 2022
On Juniper Networks Junos OS Evolved devices, receipt of a specific IPv6 packet may cause an...
High
Unreviewed
CVE-2021-0226
was published
May 24, 2022
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on PTX platforms and...
High
Unreviewed
CVE-2021-0280
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API