GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
46 advisories
Filter by severity
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's...
Moderate
Unreviewed
CVE-2022-42895
was published
Nov 23, 2022
The affected product is vulnerable due to an invalid pointer initialization, which may lead to...
Moderate
Unreviewed
CVE-2022-21168
was published
Apr 13, 2022
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this...
Moderate
Unreviewed
CVE-2022-31759
was published
Jun 14, 2022
In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a...
Moderate
Unreviewed
CVE-2022-32136
was published
Jun 25, 2022
Adobe Photoshop versions 22.5.7 (and earlier) and 23.3.2 (and earlier) are affected by an Access...
Moderate
Unreviewed
CVE-2022-34244
was published
Jul 16, 2022
Inkscape version 0.19 can access an uninitialized pointer, which may allow an attacker to have...
Moderate
Unreviewed
CVE-2021-42702
was published
May 19, 2022
WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a ...
Moderate
Unreviewed
CVE-2019-11498
was published
May 24, 2022
An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been...
Moderate
Unreviewed
CVE-2020-9274
was published
May 24, 2022
In updatehub_probe, right after JSON parsing is complete, objects\[1] is accessed from the output...
Moderate
Unreviewed
CVE-2020-10060
was published
May 24, 2022
An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does...
Moderate
Unreviewed
CVE-2020-6093
was published
May 24, 2022
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated U3D file received...
Moderate
Unreviewed
CVE-2020-6321
was published
May 24, 2022
In ihevc_inter_pred_chroma_copy_ssse3 of ihevc_inter_pred_filters_ssse3_intr.c, there is a...
Moderate
Unreviewed
CVE-2020-0488
was published
May 24, 2022
In Juniper Networks Junos OS Evolved an attacker sending certain valid BGP update packets may...
Moderate
Unreviewed
CVE-2021-0209
was published
May 24, 2022
Adobe Media Encoder version 15.2 (and earlier) is affected by an uninitialized pointer...
Moderate
Unreviewed
CVE-2021-36014
was published
May 24, 2022
A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected...
Moderate
Unreviewed
CVE-2021-41538
was published
May 24, 2022
A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime...
Moderate
Unreviewed
CVE-2021-34596
was published
May 24, 2022
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities...
Moderate
Unreviewed
CVE-2018-7515
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0894
was published
May 13, 2022
An Access of Uninitialized Pointer vulnerability in the Routing Protocol Daemon (rpd) of Juniper...
Moderate
Unreviewed
CVE-2023-22398
was published
Jan 13, 2023
Google Chrome before 12.0.742.91 attempts to read data from an uninitialized pointer, which...
Moderate
Unreviewed
CVE-2011-1814
was published
May 13, 2022
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do...
Moderate
Unreviewed
CVE-2014-1564
was published
May 14, 2022
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior...
Moderate
Unreviewed
CVE-2021-3608
was published
Feb 25, 2022
In the MDSS driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from...
Moderate
Unreviewed
CVE-2018-5860
was published
May 14, 2022
Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021...
Moderate
Unreviewed
CVE-2022-21156
was published
Feb 11, 2022
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input...
Moderate
Unreviewed
CVE-2022-1122
was published
Mar 30, 2022
ProTip!
Advisories are also available from the
GraphQL API