GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,099
Composer 4,077
Erlang 29
GitHub Actions 19
Go 1,903
Maven 5,100
npm 3,632
NuGet 638
pip 3,249
Pub 10
RubyGems 864
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,476

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

281 advisories

Filter by severity

Sort by

Least recently updated

In memzero_explicit of compiler-clang.h, there is a possible bypass of defense in depth due to... Moderate Unreviewed

CVE-2021-0938 was published May 24, 2022

This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2021-34855 was published May 24, 2022

An issue was discovered in function scanallsubs in src/sbbs3/scansubs.cpp in Synchronet BBS,... High Unreviewed

CVE-2021-36512 was published May 24, 2022

A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS... Critical Unreviewed

CVE-2021-1619 was published May 24, 2022

In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE... High Unreviewed

CVE-2021-29631 was published May 24, 2022

Adobe Bridge version 11.0.2 (and earlier) is affected by an uninitialized variable vulnerability... Low Unreviewed

CVE-2021-35991 was published May 24, 2022

Adobe Prelude version 10.0 (and earlier) are affected by an uninitialized variable vulnerability... Low Unreviewed

CVE-2021-36007 was published May 24, 2022

Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource... Low Unreviewed

CVE-2021-36282 was published May 24, 2022

The RISC-V Instruction Set Manual contains a documented ambiguity for the Machine Trap Vector... Critical Unreviewed

CVE-2021-1104 was published May 24, 2022

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This... Moderate Unreviewed

CVE-2021-22925 was published May 24, 2022

Uninitialized use in Media in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to... High Unreviewed

CVE-2021-30578 was published May 24, 2022

An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute,... High Unreviewed

CVE-2020-11260 was published May 24, 2022

An information disclosure vulnerability was found in the virtio vhost-user GPU device (vhost-user... Moderate Unreviewed

CVE-2021-3545 was published May 24, 2022

A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function... Critical Unreviewed

CVE-2018-25014 was published May 24, 2022

This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2021-31423 was published May 24, 2022

This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2021-31419 was published May 24, 2022

This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2021-31418 was published May 24, 2022

This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2021-31417 was published May 24, 2022

md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory,... Moderate Unreviewed

CVE-2021-30027 was published May 24, 2022

Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to... Moderate Unreviewed

CVE-2021-21218 was published May 24, 2022

In convertToHidl of convert.cpp, there is a possible out of bounds read due to uninitialized data... Moderate Unreviewed

CVE-2021-0463 was published May 24, 2022

Uninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to... High Unreviewed

CVE-2021-21190 was published May 24, 2022

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted... Moderate Unreviewed

CVE-2020-35494 was published May 24, 2022

An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4.... Low Unreviewed

CVE-2020-29371 was published May 24, 2022

im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an... Moderate Unreviewed

CVE-2020-20739 was published May 24, 2022

Previous 1 2 3 4 5 6 7 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

281 advisories