GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,584
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,169
npm 3,704
NuGet 661
pip 3,330
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,157

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

132 advisories

Filter by severity

Sort by

Least recently updated

An Improper Initialization vulnerability in Juniper Networks Junos OS Evolved may cause a commit... Moderate Unreviewed

CVE-2022-22164 was published Jan 20, 2022

An Improper Initialization vulnerability in the routing protocol daemon (rpd) of Juniper Networks... Moderate Unreviewed

CVE-2022-22169 was published Jan 20, 2022

Improper initialization of shared resources in some Intel(R) Processors may allow an... Moderate Unreviewed

CVE-2021-0145 was published Feb 11, 2022

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed

CVE-2021-0125 was published Feb 11, 2022

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed

CVE-2021-0119 was published Feb 11, 2022

A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth... Moderate Unreviewed

CVE-2020-25662 was published May 24, 2022

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,... Moderate Unreviewed

CVE-2010-4655 was published May 13, 2022

drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port... Moderate Unreviewed

CVE-2010-4343 was published May 13, 2022

The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed

CVE-2016-6836 was published May 13, 2022

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed

CVE-2018-1118 was published May 13, 2022

In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE... Moderate Unreviewed

CVE-2019-5605 was published May 24, 2022

Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a... Moderate Unreviewed

CVE-2022-30704 was published Feb 16, 2023

Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed

CVE-2022-32231 was published Feb 16, 2023

Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack Moderate Unreviewed

CVE-2021-3329 was published Feb 26, 2023

Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion... Moderate Unreviewed

CVE-2021-22283 was published Feb 28, 2023

A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software... Moderate Unreviewed

CVE-2021-34703 was published May 24, 2022

In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data.... Moderate Unreviewed

CVE-2022-20015 was published Jan 5, 2022

When the isula cp command is used to copy files from a container to a host machine and the... Moderate Unreviewed

CVE-2021-33638 was published Oct 29, 2023

A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker... Moderate Unreviewed

CVE-2023-5078 was published Nov 9, 2023

Jenkins Gogs Plugin vulnerable to unsafe default behavior and information disclosure Moderate

CVE-2023-40349 was published for org.jenkins-ci.plugins:gogs-webhook (Maven) Aug 16, 2023

Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an... Moderate Unreviewed

CVE-2023-27306 was published Nov 14, 2023

iSulad uses the lcr+lxc runtime (default) to run malicious images, which can cause DOS. Moderate Unreviewed

CVE-2021-33634 was published Oct 29, 2023

When the isula export command is used to export a container to an image and the container is... Moderate Unreviewed

CVE-2021-33637 was published Oct 29, 2023

On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized.... Moderate Unreviewed

CVE-2023-5370 was published Oct 4, 2023

An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed

CVE-2020-16901 was published May 24, 2022

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

132 advisories