Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

267 advisories

Loading
Improper Initialization for some Intel Unison software may allow a privileged user to potentially... Low Unreviewed
CVE-2022-46301 was published Nov 14, 2023
Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an... Moderate Unreviewed
CVE-2023-27306 was published Nov 14, 2023
Improper initialization for some Intel Unison software may allow an authenticated user to... Low Unreviewed
CVE-2022-45109 was published Nov 14, 2023
Jenkins Gogs Plugin vulnerable to unsafe default behavior and information disclosure Moderate
CVE-2023-40349 was published for org.jenkins-ci.plugins:gogs-webhook (Maven) Aug 16, 2023
Global variable extraction in bitrix/modules/main/tools.php in Bitrix24 22.0.300 allows... High Unreviewed
CVE-2023-1719 was published Nov 1, 2023
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker... Moderate Unreviewed
CVE-2023-5078 was published Nov 9, 2023
When the isula cp command is used to copy files from a container to a host machine and the... Moderate Unreviewed
CVE-2021-33638 was published Oct 29, 2023
TPM 1.2 key authorization values vulnerable to TPM transport eavesdropper in go-tpm High
CVE-2020-8918 was published for github.com/google/go-tpm (Go) Feb 11, 2022
chrisfenner
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data.... Moderate Unreviewed
CVE-2022-20015 was published Jan 5, 2022
Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued Low
CVE-2022-39284 was published for codeigniter4/framework (Composer) Oct 6, 2022
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP)... High Unreviewed
CVE-2019-12646 was published May 24, 2022
A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software... Moderate Unreviewed
CVE-2021-34703 was published May 24, 2022
A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might... High Unreviewed
CVE-2023-1513 was published Mar 23, 2023
Some smartphones have data initialization issues. Successful exploitation of this vulnerability... High Unreviewed
CVE-2022-48352 was published Mar 28, 2023
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may... High Unreviewed
CVE-2021-23223 was published Aug 19, 2022
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion... Moderate Unreviewed
CVE-2021-22283 was published Feb 28, 2023
Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack Moderate Unreviewed
CVE-2021-3329 was published Feb 26, 2023
A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM... High Unreviewed
CVE-2023-1048 was published Feb 26, 2023
Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2022-32231 was published Feb 16, 2023
Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-30704 was published Feb 16, 2023
Improper initialization in the Intel(R) Battery Life Diagnostic Tool software before version 2.2... High Unreviewed
CVE-2022-34153 was published Feb 16, 2023
A vulnerability classified as critical was found in TechPowerUp RealTemp 3.7.0.0. This... High Unreviewed
CVE-2023-1047 was published Feb 26, 2023
In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE... Moderate Unreviewed
CVE-2019-5605 was published May 24, 2022
Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed
CVE-2018-1118 was published May 13, 2022
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2016-6836 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database