GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
97 advisories
Filter by severity
The eID module has a vulnerability that causes the memory to be used without being initialized...
High
Unreviewed
CVE-2021-40025
was published
Jan 11, 2022
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and...
High
Unreviewed
CVE-2021-20613
was published
Jan 15, 2022
A CWE-665: Improper Initialization vulnerability exists that could cause information exposure...
High
Unreviewed
CVE-2022-24316
was published
Feb 11, 2022
A carefully crafted request body can cause a read to a random memory area which could cause the...
High
Unreviewed
CVE-2022-22719
was published
Mar 15, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2022-22657
was published
Mar 19, 2022
A improper initialization in Fortinet FortiClient (Windows) version 6.0.10 and below, version 6.2...
High
Unreviewed
CVE-2021-44169
was published
Apr 7, 2022
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco...
High
Unreviewed
CVE-2022-20731
was published
Apr 16, 2022
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until...
High
Unreviewed
CVE-1999-0993
was published
Apr 30, 2022
The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread Port or...
High
Unreviewed
CVE-2007-3749
was published
May 1, 2022
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which...
High
Unreviewed
CVE-2008-0062
was published
May 1, 2022
The Hash-based Message Authentication Code (HMAC) provider in Java on Apple Mac OS X 10.4.11, 10...
High
Unreviewed
CVE-2008-3637
was published
May 2, 2022
Due to a mishandled error, it is possible to leave the DRTM UApp in a partially initialized state...
High
Unreviewed
CVE-2021-26353
was published
May 11, 2022
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote...
High
Unreviewed
CVE-2016-9446
was published
May 13, 2022
UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows...
High
Unreviewed
CVE-2019-8277
was published
May 13, 2022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665:...
High
Unreviewed
CVE-2018-20022
was published
May 13, 2022
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization...
High
Unreviewed
CVE-2018-20023
was published
May 13, 2022
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage...
High
Unreviewed
CVE-2018-10115
was published
May 13, 2022
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector...
High
Unreviewed
CVE-2018-16058
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was...
High
Unreviewed
CVE-2018-7419
was published
May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2019-6230
was published
May 13, 2022
The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39...
High
Unreviewed
CVE-2011-4087
was published
May 13, 2022
Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization...
High
Unreviewed
CVE-2011-3927
was published
May 13, 2022
A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow...
High
Unreviewed
CVE-2019-1840
was published
May 13, 2022
A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure...
High
Unreviewed
CVE-2017-12262
was published
May 13, 2022
curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal...
High
Unreviewed
CVE-2016-9594
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API