GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,581
Composer 4,992
Erlang 39
GitHub Actions 38
Go 2,634
Maven 6,103
npm 4,262
NuGet 760
pip 4,053
Pub 12
RubyGems 955
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,301

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

149 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification... Moderate Unreviewed

CVE-2020-26933 was published May 24, 2022

Improper initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version... Moderate Unreviewed

CVE-2020-12326 was published May 24, 2022

In rw_i93_sm_format of rw_i93.cc, there is a possible out of bounds read due to uninitialized... Moderate Unreviewed

CVE-2020-0450 was published May 24, 2022

A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth... Moderate Unreviewed

CVE-2020-25662 was published May 24, 2022

Uninitialized data in PDFium in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to... Moderate Unreviewed

CVE-2020-15989 was published May 24, 2022

A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed

CVE-2020-9964 was published May 24, 2022

An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed

CVE-2020-16901 was published May 24, 2022

In libhwbinder, there is a possible information disclosure due to uninitialized data. This could... Moderate Unreviewed

CVE-2020-0272 was published May 24, 2022

A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a... Moderate Unreviewed

CVE-2020-10725 was published May 24, 2022

SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a... Moderate Unreviewed

CVE-2020-11655 was published May 24, 2022

An issue existed in the handling of tabs displaying picture in picture video. The issue was... Moderate Unreviewed

CVE-2020-9775 was published May 24, 2022

Improper initialization in the Intel(R) SGX SDK before v2.6.100.1 may allow an authenticated user... Moderate Unreviewed

CVE-2020-0561 was published May 24, 2022

LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in... Moderate Unreviewed

CVE-2019-15681 was published May 24, 2022

The "Forget about this site" feature in the History pane is intended to remove all saved user... Moderate Unreviewed

CVE-2019-11747 was published May 24, 2022

In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE... Moderate Unreviewed

CVE-2019-5605 was published May 24, 2022

An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed

CVE-2019-1039 was published May 24, 2022

Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and... Moderate Unreviewed

CVE-2013-1675 was published May 17, 2022

Node.js had a bug in versions 8.X and 9.X which caused buffers to not be initialized when the... Moderate Unreviewed

CVE-2017-15897 was published May 14, 2022

A memory initialization issue was addressed with improved memory handling. This issue affected... Moderate Unreviewed

CVE-2018-4351 was published May 13, 2022

Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite ... Moderate Unreviewed

CVE-2018-2934 was published May 13, 2022

NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an... Moderate Unreviewed

CVE-2017-6267 was published May 13, 2022

A vulnerability in Simple Network Management Protocol (SNMP) functions of Cisco ASR 1000 Series... Moderate Unreviewed

CVE-2017-3820 was published May 13, 2022

The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a... Moderate Unreviewed

CVE-2017-14681 was published May 13, 2022

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account,... Moderate Unreviewed

CVE-2017-13649 was published May 13, 2022

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root... Moderate Unreviewed

CVE-2017-12847 was published May 13, 2022

Previous 1…4…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

149 advisories