Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

496 advisories

Loading
Windows TCP/IP Information Disclosure Vulnerability High Unreviewed
CVE-2024-38064 was published Jul 9, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized... Moderate Unreviewed
CVE-2024-29785 was published Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible... Moderate Unreviewed
CVE-2024-29780 was published Jun 13, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack... Moderate Unreviewed
CVE-2024-32910 was published Jun 13, 2024
In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: add validation... Moderate Unreviewed
CVE-2022-48864 was published Jul 16, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could... High Unreviewed
CVE-2024-7526 was published Aug 6, 2024
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead... High Unreviewed
CVE-2024-32906 was published Jun 13, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38118 was published Aug 13, 2024
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38122 was published Aug 13, 2024
Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote... High Unreviewed
CVE-2024-6990 was published Aug 1, 2024
In the Linux kernel, the following vulnerability has been resolved: inet_diag: fix kernel... Moderate Unreviewed
CVE-2021-47597 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Init the count... Moderate Unreviewed
CVE-2024-41052 was published Jul 29, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7540 was published Aug 6, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7541 was published Aug 6, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7542 was published Aug 6, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value... High Unreviewed
CVE-2024-38381 was published Jun 21, 2024
Windows Authentication Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38254 was published Sep 10, 2024
Windows Networking Information Disclosure Vulnerability High Unreviewed
CVE-2024-43458 was published Sep 10, 2024
Microsoft AllJoyn API Information Disclosure Vulnerability High Unreviewed
CVE-2024-38257 was published Sep 10, 2024
Windows Kernel-Mode Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38256 was published Sep 10, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38260 was published Sep 10, 2024
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products... Moderate Unreviewed
CVE-2023-4489 was published Dec 15, 2023
The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in... Moderate Unreviewed
CVE-2023-2747 was published Jun 15, 2023
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43502 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database