Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+

265 advisories

Loading
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack... High Unreviewed
CVE-2020-28019 was published May 24, 2022
Due to an improper Initialization vulnerability on Juniper Networks Junos OS QFX5100-96S devices... Moderate Unreviewed
CVE-2021-0234 was published May 24, 2022
On Juniper Networks Junos OS Evolved devices, receipt of a specific IPv6 packet may cause an... High Unreviewed
CVE-2021-0226 was published May 24, 2022
In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to... High Unreviewed
CVE-2021-0435 was published May 24, 2022
The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn... Moderate Unreviewed
CVE-2021-28688 was published May 24, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2021-1780 was published May 24, 2022
A flaw possibility of race condition and incorrect initialization of the process id was found in... High Unreviewed
CVE-2020-35508 was published May 24, 2022
Softaculous before 5.5.7 is affected by a code execution vulnerability because of External... High Unreviewed
CVE-2020-26886 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0451 was published May 24, 2022
In the Titan-M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0453 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0452 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0450 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0449 was published May 24, 2022
Improper initialization in the firmware for the Intel(R) Ethernet I210 Controller series of... Moderate Unreviewed
CVE-2020-0522 was published May 24, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-1661 was published May 24, 2022
Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl... High Unreviewed
CVE-2020-10143 was published May 24, 2022
A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS... High Unreviewed
CVE-2020-27950 was published May 24, 2022
OneCRL was non-functional in the new Firefox for Android due to a missing service initialization.... Moderate Unreviewed
CVE-2020-26957 was published May 24, 2022
Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification... Moderate Unreviewed
CVE-2020-26933 was published May 24, 2022
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10,... High Unreviewed
CVE-2020-8744 was published May 24, 2022
Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an... High Unreviewed
CVE-2020-12336 was published May 24, 2022
Improper initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version... Moderate Unreviewed
CVE-2020-12326 was published May 24, 2022
In rw_i93_sm_format of rw_i93.cc, there is a possible out of bounds read due to uninitialized... Moderate Unreviewed
CVE-2020-0450 was published May 24, 2022
In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution... High Unreviewed
CVE-2020-0438 was published May 24, 2022
Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex... High Unreviewed
CVE-2020-3573 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database