GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
A carefully crafted request body can cause a read to a random memory area which could cause the...
High
Unreviewed
CVE-2022-22719
was published
Mar 15, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2022-22657
was published
Mar 19, 2022
A improper initialization in Fortinet FortiClient (Windows) version 6.0.10 and below, version 6.2...
High
Unreviewed
CVE-2021-44169
was published
Apr 7, 2022
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on EX4650 devices,...
Moderate
Unreviewed
CVE-2022-22186
was published
Apr 15, 2022
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco...
High
Unreviewed
CVE-2022-20731
was published
Apr 16, 2022
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco...
Moderate
Unreviewed
CVE-2022-20661
was published
Apr 16, 2022
slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root...
Moderate
Unreviewed
CVE-2017-14159
was published
May 13, 2022
Elrond-go has improper initialization
Critical
CVE-2022-36061
was published
for
github.com/ElrondNetwork/elrond-go
(Go)
Sep 16, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004...
High
Unreviewed
CVE-2022-26722
was published
May 27, 2022
A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing...
Moderate
Unreviewed
CVE-2021-20317
was published
May 24, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004...
High
Unreviewed
CVE-2022-26721
was published
May 27, 2022
Due to a mishandled error, it is possible to leave the DRTM UApp in a partially initialized state...
High
Unreviewed
CVE-2021-26353
was published
May 11, 2022
Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine...
High
Unreviewed
CVE-2022-29695
was published
Jun 3, 2022
In Boot in all Android releases from CAF using the Linux kernel, a Use of Uninitialized Variable...
High
Unreviewed
CVE-2014-9942
was published
May 17, 2022
Apache Calcite Avatica JDBC driver arbitrary code execution
High
CVE-2022-36364
was published
for
org.apache.calcite.avatica:avatica-core
(Maven)
Jul 29, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
Moderate
Unreviewed
CVE-2022-32823
was published
Sep 25, 2022
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading...
Moderate
Unreviewed
CVE-2021-4218
was published
Aug 25, 2022
UUPSUpgradeable vulnerability in @openzeppelin/contracts
Critical
CVE-2021-41264
was published
for
@openzeppelin/contracts
(npm)
Sep 15, 2021
Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR...
Moderate
Unreviewed
CVE-2022-2472
was published
Sep 16, 2022
Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11...
High
Unreviewed
CVE-2022-37334
was published
Nov 11, 2022
OpenZeppelin Contracts initializer reentrancy may lead to double initialization
Moderate
CVE-2022-39384
was published
for
@openzeppelin/contracts
(npm)
Dec 14, 2021
The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer,...
Low
Unreviewed
CVE-2014-8181
was published
May 17, 2022
In D-Link DIR-816 A2_v1.10CNB04.img the network can be initialized without authentication via ...
Critical
Unreviewed
CVE-2022-37128
was published
Sep 1, 2022
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in...
Moderate
Unreviewed
CVE-2019-15681
was published
May 24, 2022
Improper initialization in the Intel(R) SGX SDK before v2.6.100.1 may allow an authenticated user...
Moderate
Unreviewed
CVE-2020-0561
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API