Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

123 advisories

Loading
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on EX4650 devices,... Moderate Unreviewed
CVE-2022-22186 was published Apr 15, 2022
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco... Moderate Unreviewed
CVE-2022-20661 was published Apr 16, 2022
slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root... Moderate Unreviewed
CVE-2017-14159 was published May 13, 2022
A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing... Moderate Unreviewed
CVE-2021-20317 was published May 24, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2022-32823 was published Sep 25, 2022
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading... Moderate Unreviewed
CVE-2021-4218 was published Aug 25, 2022
Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR... Moderate Unreviewed
CVE-2022-2472 was published Sep 16, 2022
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in... Moderate Unreviewed
CVE-2019-15681 was published May 24, 2022
Improper initialization in the Intel(R) SGX SDK before v2.6.100.1 may allow an authenticated user... Moderate Unreviewed
CVE-2020-0561 was published May 24, 2022
An issue existed in the handling of tabs displaying picture in picture video. The issue was... Moderate Unreviewed
CVE-2020-9775 was published May 24, 2022
SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a... Moderate Unreviewed
CVE-2020-11655 was published May 24, 2022
Node.js had a bug in versions 8.X and 9.X which caused buffers to not be initialized when the... Moderate Unreviewed
CVE-2017-15897 was published May 14, 2022
In libhwbinder, there is a possible information disclosure due to uninitialized data. This could... Moderate Unreviewed
CVE-2020-0272 was published May 24, 2022
Uninitialized data in PDFium in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to... Moderate Unreviewed
CVE-2020-15989 was published May 24, 2022
OneCRL was non-functional in the new Firefox for Android due to a missing service initialization.... Moderate Unreviewed
CVE-2020-26957 was published May 24, 2022
In rw_i93_sm_format of rw_i93.cc, there is a possible out of bounds read due to uninitialized... Moderate Unreviewed
CVE-2020-0450 was published May 24, 2022
Improper initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version... Moderate Unreviewed
CVE-2020-12326 was published May 24, 2022
Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification... Moderate Unreviewed
CVE-2020-26933 was published May 24, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2020-9964 was published May 24, 2022
Improper initialization in the firmware for the Intel(R) Ethernet I210 Controller series of... Moderate Unreviewed
CVE-2020-0522 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0451 was published May 24, 2022
In the Titan-M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0453 was published May 24, 2022
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized... Moderate Unreviewed
CVE-2021-0452 was published May 24, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2021-1780 was published May 24, 2022
Due to an improper Initialization vulnerability on Juniper Networks Junos OS QFX5100-96S devices... Moderate Unreviewed
CVE-2021-0234 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database