Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

293 advisories

Loading
Improper resource management in firmware of some Solidigm DC Products may allow an attacker with... Moderate Unreviewed
CVE-2025-12902 was published Nov 7, 2025
p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of... High Unreviewed
CVE-2024-28084 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable:... Moderate Unreviewed
CVE-2024-45018 was published Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF... Moderate Unreviewed
CVE-2024-44947 was published Sep 2, 2024
Improper initialization in firmware for some Intel(R) CSME may allow a privileged user to... Moderate Unreviewed
CVE-2023-48361 was published Aug 14, 2024
Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may... Moderate Unreviewed
CVE-2024-31157 was published Feb 13, 2025
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input... Moderate Unreviewed
CVE-2022-1122 was published Mar 30, 2022
Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor... Low Unreviewed
CVE-2024-36331 was published Sep 6, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up... Moderate Unreviewed
CVE-2025-21906 was published Apr 1, 2025
Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and... Moderate Unreviewed
CVE-2013-1675 was published May 17, 2022
Open Management Infrastructure Remote Code Execution Vulnerability Critical Unreviewed
CVE-2021-38647 was published May 24, 2022
A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS... High Unreviewed
CVE-2020-27950 was published May 24, 2022
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix... Moderate Unreviewed
CVE-2024-38558 was published Jun 19, 2024
ArrayQueue's push_front is not panic-safe Moderate
GHSA-xqjr-wfx3-gmxv was published for array-queue (Rust) Sep 2, 2025
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of... Low Unreviewed
CVE-2020-14347 was published May 24, 2022
IdMap from_iter may lead to uninitialized memory being freed on drop Moderate
GHSA-qq4c-hm99-979m was published for id-map (Rust) Aug 18, 2025
Improper initialization in the Linux kernel-mode driver for some Intel(R) I350 Series Ethernet... Low Unreviewed
CVE-2025-24511 was published Aug 12, 2025
AMI APTIOV contains a vulnerability in BIOS where a user may cause “Improper Initialization” by... Moderate Unreviewed
CVE-2025-22834 was published Aug 12, 2025
A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0... High Unreviewed
CVE-2017-12736 was published May 13, 2022
In fvp_freq_histogram_init of fvp.c, there is a possible Information Disclosure due to... Moderate Unreviewed
CVE-2024-32916 was published Jun 13, 2024
In plugin_ipc_handler of slc_plugin.c, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2024-32930 was published Jun 13, 2024
Improper initialization of variables in the DXE driver may allow a privileged user to leak... Moderate Unreviewed
CVE-2023-20597 was published Sep 20, 2023
Improper initialization of variables in the DXE driver may allow a privileged user to leak... Moderate Unreviewed
CVE-2023-20594 was published Sep 20, 2023
The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39... Moderate Unreviewed
CVE-2025-5702 was published Jun 5, 2025
The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40... Moderate Unreviewed
CVE-2025-5745 was published Jun 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database