Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

24 advisories

Loading
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or... Low Unreviewed
CVE-2024-45618 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45616 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45617 was published Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45615 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum... Low Unreviewed
CVE-2024-43845 was published Aug 17, 2024
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an... Low Unreviewed
CVE-2024-7868 was published Aug 15, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7542 was published Aug 6, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7541 was published Aug 6, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2024-7540 was published Aug 6, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2021-34999 was published May 8, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2021-35000 was published May 8, 2024
An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel... Low Unreviewed
CVE-2021-21781 was published May 24, 2022
Adobe Bridge version 11.0.2 (and earlier) is affected by an uninitialized variable vulnerability... Low Unreviewed
CVE-2021-35991 was published May 24, 2022
Adobe Prelude version 10.0 (and earlier) are affected by an uninitialized variable vulnerability... Low Unreviewed
CVE-2021-36007 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource... Low Unreviewed
CVE-2021-36282 was published May 24, 2022
An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4.... Low Unreviewed
CVE-2020-29371 was published May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before... Low Unreviewed
CVE-2020-3964 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12864 was published May 24, 2022
A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows... Low Unreviewed
CVE-2020-10732 was published May 24, 2022
An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel through 5.6.2.... Low Unreviewed
CVE-2020-11494 was published May 24, 2022
In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to... Low Unreviewed
CVE-2020-0007 was published May 24, 2022
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB... Low Unreviewed
CVE-2019-19947 was published May 24, 2022
In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB... Low Unreviewed
CVE-2019-19535 was published May 24, 2022
In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in... Low Unreviewed
CVE-2019-18786 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database