Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

123 advisories

Loading
Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied... High Unreviewed
CVE-2022-3378 was published Oct 28, 2022
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X... High Unreviewed
CVE-2016-1005 was published May 17, 2022
Within the <code>lg_init()</code> function, if several allocations succeed but then one fails, an... High Unreviewed
CVE-2022-34480 was published Dec 22, 2022
A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V33... High Unreviewed
CVE-2022-39147 was published Sep 14, 2022
A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V33... High Unreviewed
CVE-2022-39146 was published Sep 14, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-27794 was published May 12, 2022
An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of... High Unreviewed
CVE-2018-4001 was published May 13, 2022
An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in... High Unreviewed
CVE-2018-3842 was published May 13, 2022
Horner Automation's Cscape version 9.90 SP 6 and prior does not properly validate user-supplied... High Unreviewed
CVE-2022-3377 was published Nov 16, 2022
Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer... High Unreviewed
CVE-2018-1000099 was published May 13, 2022
Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash... High Unreviewed
CVE-2018-11803 was published May 13, 2022
Amazon Web Services (AWS) FreeRTOS through 1.3.1 has an uninitialized pointer free in... High Unreviewed
CVE-2018-16522 was published May 13, 2022
A remote code execution vulnerability exists in the way that the Windows Graphics Device... High Unreviewed
CVE-2019-0853 was published May 13, 2022
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an... High Unreviewed
CVE-2021-38409 was published Dec 21, 2021
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with... High Unreviewed
CVE-2011-0479 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9981 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-10484 was published May 13, 2022
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could... High Unreviewed
CVE-2018-19018 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-14282 was published May 13, 2022
GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls... High Unreviewed
CVE-2022-3084 was published Dec 8, 2022
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer... High Unreviewed
CVE-2019-3836 was published May 14, 2022
GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls... High Unreviewed
CVE-2022-2952 was published Dec 8, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2016-10447 was published May 14, 2022
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway (ALG) of... High Unreviewed
CVE-2022-22236 was published Oct 18, 2022
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0... High Unreviewed
CVE-2022-29055 was published Oct 18, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database