GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
Allocation of Resources Without Limits or Throttling, Improper Initialization vulnerability in B...
Moderate
Unreviewed
CVE-2023-3242
was published
Jul 26, 2023
Vulnerability of signature verification in the iaware system being initialized later than the...
Moderate
Unreviewed
CVE-2022-48518
was published
Jul 6, 2023
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to...
Moderate
Unreviewed
CVE-2022-31477
was published
May 10, 2023
A memory initialization issue was addressed. This issue is fixed in macOS Ventura 13.3. A remote...
High
Unreviewed
CVE-2023-27934
was published
May 8, 2023
A malicious actor may convince a victim to open a malicious USD file that may trigger an...
High
Unreviewed
CVE-2023-25010
was published
Apr 17, 2023
Some smartphones have data initialization issues. Successful exploitation of this vulnerability...
High
Unreviewed
CVE-2022-48352
was published
Mar 28, 2023
A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might...
High
Unreviewed
CVE-2023-1513
was published
Mar 23, 2023
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion...
Moderate
Unreviewed
CVE-2021-22283
was published
Feb 28, 2023
A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM...
High
Unreviewed
CVE-2023-1048
was published
Feb 26, 2023
A vulnerability classified as critical was found in TechPowerUp RealTemp 3.7.0.0. This...
High
Unreviewed
CVE-2023-1047
was published
Feb 26, 2023
Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack
Moderate
Unreviewed
CVE-2021-3329
was published
Feb 26, 2023
Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged...
Moderate
Unreviewed
CVE-2022-32231
was published
Feb 16, 2023
Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a...
Moderate
Unreviewed
CVE-2022-30704
was published
Feb 16, 2023
Improper initialization in the Intel(R) Battery Life Diagnostic Tool software before version 2.2...
High
Unreviewed
CVE-2022-34153
was published
Feb 16, 2023
On BIG-IP Virtual Edition versions 15.1x beginning in 15.1.4 to before 15.1.8 and 14.1.x...
High
Unreviewed
CVE-2023-23555
was published
Feb 1, 2023
Tokio reject_remote_clients configuration may get dropped when creating a Windows named pipe
Moderate
CVE-2023-22466
was published
for
tokio
(Rust)
Jan 6, 2023
Openshift 4.9 does not use HTTP Strict Transport Security (HSTS) which may allow man-in-the...
High
Unreviewed
CVE-2022-3259
was published
Dec 9, 2022
External initialization of trusted variables or data stores vulnerability exists in WordPress...
High
Unreviewed
CVE-2022-43468
was published
Dec 7, 2022
NodeBB vulnerable to account takeover via prototype vulnerability
Critical
CVE-2022-46164
was published
for
nodebb
(npm)
Dec 5, 2022
Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11...
High
Unreviewed
CVE-2022-37334
was published
Nov 11, 2022
Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued
Low
CVE-2022-39284
was published
for
codeigniter4/framework
(Composer)
Oct 6, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
Moderate
Unreviewed
CVE-2022-32823
was published
Sep 25, 2022
Elrond-go has improper initialization
Critical
CVE-2022-36061
was published
for
github.com/ElrondNetwork/elrond-go
(Go)
Sep 16, 2022
Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR...
Moderate
Unreviewed
CVE-2022-2472
was published
Sep 16, 2022
In D-Link DIR-816 A2_v1.10CNB04.img the network can be initialized without authentication via ...
Critical
Unreviewed
CVE-2022-37128
was published
Sep 1, 2022
ProTip!
Advisories are also available from the
GraphQL API