Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,330
Erlang
31
GitHub Actions
21
Go
2,091
Maven
5,000+
npm
3,756
NuGet
678
pip
3,443
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

104 advisories

Loading
Openshift 4.9 does not use HTTP Strict Transport Security (HSTS) which may allow man-in-the... High Unreviewed
CVE-2022-3259 was published Dec 9, 2022
External initialization of trusted variables or data stores vulnerability exists in WordPress... High Unreviewed
CVE-2022-43468 was published Dec 7, 2022
Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11... High Unreviewed
CVE-2022-37334 was published Nov 11, 2022
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may... High Unreviewed
CVE-2021-23223 was published Aug 19, 2022
Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076... High Unreviewed
CVE-2022-27493 was published Aug 19, 2022
Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076... High Unreviewed
CVE-2022-32579 was published Aug 19, 2022
Apache Calcite Avatica JDBC driver arbitrary code execution High
CVE-2022-36364 was published for org.apache.calcite.avatica:avatica-core (Maven) Jul 29, 2022
Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine... High Unreviewed
CVE-2022-29695 was published Jun 3, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004... High Unreviewed
CVE-2022-26722 was published May 27, 2022
A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004... High Unreviewed
CVE-2022-26721 was published May 27, 2022
Failure to validate VM_HSAVE_PA during SNP_INIT may result in a loss of memory integrity. High Unreviewed
CVE-2021-26326 was published May 24, 2022
A vulnerability in the Protection Against Distributed Denial of Service Attacks feature of Cisco... High Unreviewed
CVE-2021-34697 was published May 24, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2021-1860 was published May 24, 2022
Improper initialization in some Intel(R) Graphics Driver before version 27.20.100.9030 may allow... High Unreviewed
CVE-2021-0061 was published May 24, 2022
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on PTX platforms and... High Unreviewed
CVE-2021-0280 was published May 24, 2022
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack... High Unreviewed
CVE-2020-28019 was published May 24, 2022
On Juniper Networks Junos OS Evolved devices, receipt of a specific IPv6 packet may cause an... High Unreviewed
CVE-2021-0226 was published May 24, 2022
In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to... High Unreviewed
CVE-2021-0435 was published May 24, 2022
A flaw possibility of race condition and incorrect initialization of the process id was found in... High Unreviewed
CVE-2020-35508 was published May 24, 2022
Softaculous before 5.5.7 is affected by a code execution vulnerability because of External... High Unreviewed
CVE-2020-26886 was published May 24, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-1661 was published May 24, 2022
Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl... High Unreviewed
CVE-2020-10143 was published May 24, 2022
A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS... High Unreviewed
CVE-2020-27950 was published May 24, 2022
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10,... High Unreviewed
CVE-2020-8744 was published May 24, 2022
Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an... High Unreviewed
CVE-2020-12336 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database