Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

43 advisories

Loading
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's... Moderate Unreviewed
CVE-2022-42895 was published Nov 23, 2022
The affected product is vulnerable due to an invalid pointer initialization, which may lead to... Moderate Unreviewed
CVE-2022-21168 was published Apr 13, 2022
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this... Moderate Unreviewed
CVE-2022-31759 was published Jun 14, 2022
In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a... Moderate Unreviewed
CVE-2022-32136 was published Jun 25, 2022
Adobe Photoshop versions 22.5.7 (and earlier) and 23.3.2 (and earlier) are affected by an Access... Moderate Unreviewed
CVE-2022-34244 was published Jul 16, 2022
Inkscape version 0.19 can access an uninitialized pointer, which may allow an attacker to have... Moderate Unreviewed
CVE-2021-42702 was published May 19, 2022
WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a ... Moderate Unreviewed
CVE-2019-11498 was published May 24, 2022
An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been... Moderate Unreviewed
CVE-2020-9274 was published May 24, 2022
In updatehub_probe, right after JSON parsing is complete, objects\[1] is accessed from the output... Moderate Unreviewed
CVE-2020-10060 was published May 24, 2022
An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does... Moderate Unreviewed
CVE-2020-6093 was published May 24, 2022
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated U3D file received... Moderate Unreviewed
CVE-2020-6321 was published May 24, 2022
In ihevc_inter_pred_chroma_copy_ssse3 of ihevc_inter_pred_filters_ssse3_intr.c, there is a... Moderate Unreviewed
CVE-2020-0488 was published May 24, 2022
In Juniper Networks Junos OS Evolved an attacker sending certain valid BGP update packets may... Moderate Unreviewed
CVE-2021-0209 was published May 24, 2022
Adobe Media Encoder version 15.2 (and earlier) is affected by an uninitialized pointer... Moderate Unreviewed
CVE-2021-36014 was published May 24, 2022
A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected... Moderate Unreviewed
CVE-2021-41538 was published May 24, 2022
A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime... Moderate Unreviewed
CVE-2021-34596 was published May 24, 2022
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities... Moderate Unreviewed
CVE-2018-7515 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0894 was published May 13, 2022
An Access of Uninitialized Pointer vulnerability in the Routing Protocol Daemon (rpd) of Juniper... Moderate Unreviewed
CVE-2023-22398 was published Jan 13, 2023
Google Chrome before 12.0.742.91 attempts to read data from an uninitialized pointer, which... Moderate Unreviewed
CVE-2011-1814 was published May 13, 2022
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do... Moderate Unreviewed
CVE-2014-1564 was published May 14, 2022
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior... Moderate Unreviewed
CVE-2021-3608 was published Feb 25, 2022
In the MDSS driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from... Moderate Unreviewed
CVE-2018-5860 was published May 14, 2022
Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021... Moderate Unreviewed
CVE-2022-21156 was published Feb 11, 2022
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input... Moderate Unreviewed
CVE-2022-1122 was published Mar 30, 2022
ProTip! Advisories are also available from the GraphQL API