Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,065
Maven
5,000+
npm
3,744
NuGet
668
pip
3,427
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

126 advisories

Loading
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to the use of uninitialized... High Unreviewed
CVE-2022-2949 was published Dec 13, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to the use of uninitialized... High Unreviewed
CVE-2022-2950 was published Dec 13, 2022
Use of uninitialized variable in function gen_eth_recv in GNS3 dynamips 0.2.21. High Unreviewed
CVE-2022-47012 was published Jan 20, 2023
On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8, 14.1.x before... High Unreviewed
CVE-2023-22281 was published Feb 1, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0... High Unreviewed
CVE-2021-32845 was published Feb 18, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0... High Unreviewed
CVE-2021-32846 was published Feb 18, 2023
Information disclosure in modem due to missing NULL check while reading packets received from... High Unreviewed
CVE-2022-25737 was published Apr 13, 2023
A Use of Uninitialized Resource vulnerability in the Border Gateway Protocol (BGP) software of... High Unreviewed
CVE-2023-28967 was published Apr 18, 2023
When reading a file, an uninitialized value could have been used as read limit. This... High Unreviewed
CVE-2023-32213 was published Jun 2, 2023
In readSampleData of NuMediaExtractor.cpp, there is a possible out of bounds write due to... High Unreviewed
CVE-2023-21127 was published Jun 15, 2023
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not have an MSS lower bound (e.g., it... High Unreviewed
CVE-2023-35847 was published Jun 19, 2023
In multiple locations of avrc, there is a possible leak of heap data due to uninitialized data.... High Unreviewed
CVE-2023-21233 was published Aug 15, 2023
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537... High Unreviewed
CVE-2023-31275 was published Nov 27, 2023
When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause... High Unreviewed
CVE-2024-23314 was published Feb 14, 2024
Helm's Missing YAML Content Leads To Panic High
CVE-2024-26147 was published for helm.sh/helm/v3 (Go) Feb 22, 2024
jake-ciolek
crayon: ObjectPool creates uninitialized memory when freeing objects High
GHSA-xfhw-6mc4-mgxf was published for crayon (Rust) Apr 5, 2024
In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma... High Unreviewed
CVE-2024-27022 was published May 1, 2024
In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix uninit... High Unreviewed
CVE-2023-52842 was published May 21, 2024
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead... High Unreviewed
CVE-2024-32906 was published Jun 13, 2024
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this... High Unreviewed
CVE-2024-36503 was published Jun 14, 2024
In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure... High Unreviewed
CVE-2024-38538 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: block: Fix wrong offset in... High Unreviewed
CVE-2022-48747 was published Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value... High Unreviewed
CVE-2024-38381 was published Jun 21, 2024
Windows TCP/IP Information Disclosure Vulnerability High Unreviewed
CVE-2024-38064 was published Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in... High Unreviewed
CVE-2024-41059 was published Jul 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database