Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,325
Pub
11
RubyGems
882
Rust
835
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

50 advisories

Loading
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... Moderate Unreviewed
CVE-2021-44003 was published Dec 15, 2021
An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC... Critical Unreviewed
CVE-2022-21217 was published Jan 29, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46631 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46617 was published Feb 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2021-46570 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46566 was published Feb 19, 2022
When using gdImageCreateFromXbm() function of gd extension in versions 7.1.x below 7.1.30, 7.2.x... Moderate Unreviewed
CVE-2019-11038 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-31435 was published May 24, 2022
vim is vulnerable to Stack-based Buffer Overflow High Unreviewed
CVE-2021-3928 was published May 24, 2022
In BIG-IP Versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when... High Unreviewed
CVE-2022-34655 was published Aug 5, 2022
This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2022-42432 was published Mar 29, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-28317 was published Mar 29, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-28319 was published Mar 29, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-28320 was published Mar 29, 2023
Information disclosure in modem due to missing NULL check while reading packets received from... High Unreviewed
CVE-2022-25737 was published Apr 13, 2023
Memory corruption due to buffer copy without checking size of input in Audio while voice call... Critical Unreviewed
CVE-2022-40510 was published Aug 8, 2023
An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther... Moderate Unreviewed
CVE-2023-31192 was published Oct 12, 2023
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537... High Unreviewed
CVE-2023-31275 was published Nov 27, 2023
A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can... High Unreviewed
CVE-2024-23137 was published Feb 22, 2024
Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on... High Unreviewed
CVE-2024-21502 was published Feb 24, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 uses uninitialized variables when... Moderate Unreviewed
CVE-2024-31874 was published Apr 10, 2024
In OffloadAMRWriter, a scalar field is not initialized so will contain an arbitrary value left... Moderate Unreviewed
CVE-2024-32625 was published Apr 16, 2024
An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 while parsing HTTP requests.... Moderate Unreviewed
CVE-2023-40533 was published May 1, 2024
Ashlar-Vellum Cobalt Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-34310 was published May 3, 2024
Kofax Power PDF printf Uninitialized Variable Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38088 was published May 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database