Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,190
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,702
NuGet
656
pip
3,326
Pub
11
RubyGems
883
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113 advisories

Loading
CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having... High Unreviewed
CVE-2023-22366 was published Jan 17, 2023
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2022-22198 was published Apr 15, 2022
An exploitable uninitialized pointer vulnerability exists in the rich text format parser of... High Unreviewed
CVE-2018-4040 was published May 13, 2022
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0... High Unreviewed
CVE-2016-4343 was published May 14, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by an Access... High Unreviewed
CVE-2022-38426 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by an Access... High Unreviewed
CVE-2022-38427 was published Sep 17, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the Ofbd, where a local user with elevated... High Unreviewed
CVE-2022-31599 was published Jul 5, 2022
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
Adobe Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 17.012... High Unreviewed
CVE-2022-34228 was published Jul 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40649 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40642 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40645 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40646 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40643 was published Sep 16, 2022
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0. High Unreviewed
CVE-2022-1809 was published May 22, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... High Unreviewed
CVE-2022-29033 was published May 21, 2022
An exploitable uninitialized pointer vulnerability exists in the Word document parser of the the... High Unreviewed
CVE-2018-3983 was published May 24, 2022
An uninitialized pointer issue has been identified in the way the application processes project... High Unreviewed
CVE-2021-22639 was published May 24, 2022
An uninitialized pointer may be exploited in Fatek FvDesigner Version 1.5.76 and prior while the... High Unreviewed
CVE-2021-22670 was published May 24, 2022
Polaris Office v9.103.83.44230 is affected by a Uninitialized Pointer Vulnerability in... High Unreviewed
CVE-2021-34280 was published May 24, 2022
A CWE-824: Access of uninitialized pointer vulnerability exists inIGSS Definition (Def.exe) V15.0... High Unreviewed
CVE-2021-22758 was published May 24, 2022
Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a... High Unreviewed
CVE-2021-33542 was published May 24, 2022
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL... High Unreviewed
CVE-2021-37180 was published May 24, 2022
An uninitialized pointer in FATEK Automation FvDesigner, Versions 1.5.88 and prior may be... High Unreviewed
CVE-2021-32931 was published May 24, 2022
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when... High Unreviewed
CVE-2021-33015 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database