Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

150 advisories

Loading
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38122 was published Aug 13, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38118 was published Aug 13, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize... Moderate Unreviewed
CVE-2024-42076 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: add validation... Moderate Unreviewed
CVE-2022-48864 was published Jul 16, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack... Moderate Unreviewed
CVE-2024-32910 was published Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible... Moderate Unreviewed
CVE-2024-29780 was published Jun 13, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized... Moderate Unreviewed
CVE-2024-29785 was published Jun 13, 2024
In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise... Moderate Unreviewed
CVE-2024-27431 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use... Moderate Unreviewed
CVE-2024-26901 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf:... Moderate Unreviewed
CVE-2022-48654 was published Apr 28, 2024
Windows CoreMessaging Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20694 was published Jan 9, 2024
there is a possible Information Disclosure due to uninitialized data. This could lead to local... Moderate Unreviewed
CVE-2024-29745 was published Apr 5, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26209 was published Apr 9, 2024
Windows Mobile Hotspot Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26220 was published Apr 9, 2024
An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther... Moderate Unreviewed
CVE-2023-31192 was published Oct 12, 2023
In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2023-21276 was published Aug 15, 2023
Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed
CVE-2023-22330 was published Aug 11, 2023
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to... Moderate Unreviewed
CVE-2023-3488 was published Jul 28, 2023
A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper... Moderate Unreviewed
CVE-2023-36836 was published Jul 14, 2023
The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized... Moderate Unreviewed
CVE-2021-0948 was published Jul 13, 2023
An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi... Moderate Unreviewed
CVE-2023-22897 was published Apr 13, 2023
md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory,... Moderate Unreviewed
CVE-2021-30027 was published May 24, 2022
When using gdImageCreateFromXbm() function of gd extension in versions 7.1.x below 7.1.30, 7.2.x... Moderate Unreviewed
CVE-2019-11038 was published May 24, 2022
drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive... Moderate Unreviewed
CVE-2022-40768 was published Sep 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database