Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

293 advisories

Loading
Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued Low
CVE-2022-39284 was published for codeigniter4/framework (Composer) Oct 6, 2022
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP)... High Unreviewed
CVE-2019-12646 was published May 24, 2022
A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software... Moderate Unreviewed
CVE-2021-34703 was published May 24, 2022
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may... High Unreviewed
CVE-2021-23223 was published Aug 19, 2022
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion... Moderate Unreviewed
CVE-2021-22283 was published Feb 28, 2023
Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack Moderate Unreviewed
CVE-2021-3329 was published Feb 26, 2023
A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM... High Unreviewed
CVE-2023-1048 was published Feb 26, 2023
Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2022-32231 was published Feb 16, 2023
Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-30704 was published Feb 16, 2023
Improper initialization in the Intel(R) Battery Life Diagnostic Tool software before version 2.2... High Unreviewed
CVE-2022-34153 was published Feb 16, 2023
A vulnerability classified as critical was found in TechPowerUp RealTemp 3.7.0.0. This... High Unreviewed
CVE-2023-1047 was published Feb 26, 2023
In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE... Moderate Unreviewed
CVE-2019-5605 was published May 24, 2022
Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed
CVE-2018-1118 was published May 13, 2022
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2016-6836 was published May 13, 2022
On BIG-IP Virtual Edition versions 15.1x beginning in 15.1.4 to before 15.1.8 and 14.1.x... High Unreviewed
CVE-2023-23555 was published Feb 1, 2023
drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port... Moderate Unreviewed
CVE-2010-4343 was published May 13, 2022
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,... Moderate Unreviewed
CVE-2010-4655 was published May 13, 2022
A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth... Moderate Unreviewed
CVE-2020-25662 was published May 24, 2022
Openshift 4.9 does not use HTTP Strict Transport Security (HSTS) which may allow man-in-the... High Unreviewed
CVE-2022-3259 was published Dec 9, 2022
An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0227.1. The vulnerable... High Unreviewed
CVE-2019-7630 was published May 24, 2022
A CWE-665: Improper Initialization vulnerability exists that could cause information exposure... High Unreviewed
CVE-2022-24316 was published Feb 11, 2022
Improper Initialization in OpenZeppelin High
CVE-2021-46320 was published for @openzeppelin/contracts (npm) Feb 5, 2022
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and... High Unreviewed
CVE-2021-20613 was published Jan 15, 2022
An Improper Initialization vulnerability in the routing protocol daemon (rpd) of Juniper Networks... Moderate Unreviewed
CVE-2022-22169 was published Jan 20, 2022
An Improper Initialization vulnerability in Juniper Networks Junos OS Evolved may cause a commit... Moderate Unreviewed
CVE-2022-22164 was published Jan 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database