Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

195 advisories

Loading
Assumed memory layout of std::net::SocketAddr Moderate
GHSA-p5w9-856p-8q4g was published for socket2 (Rust) Aug 25, 2021 withdrawn
NULL Pointer Dereference and Access of Uninitialized Pointer in TensorFlow Critical
GHSA-h6gw-r52c-724r was published for tensorflow (pip) Feb 9, 2022
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's... Moderate Unreviewed
CVE-2022-42895 was published Nov 23, 2022
CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having... High Unreviewed
CVE-2023-22366 was published Jan 17, 2023
Access of Uninitialized Pointer in linked-hash-map Critical
CVE-2020-25573 was published for linked-hash-map (Rust) Aug 25, 2021
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2022-22198 was published Apr 15, 2022
The affected product is vulnerable due to an invalid pointer initialization, which may lead to... Moderate Unreviewed
CVE-2022-21168 was published Apr 13, 2022
An exploitable uninitialized pointer vulnerability exists in the rich text format parser of... High Unreviewed
CVE-2018-4040 was published May 13, 2022
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0... High Unreviewed
CVE-2016-4343 was published May 14, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by an Access... High Unreviewed
CVE-2022-38426 was published Sep 17, 2022
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS... Critical Unreviewed
CVE-2021-1619 was published May 24, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by an Access... High Unreviewed
CVE-2022-38427 was published Sep 17, 2022
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this... Moderate Unreviewed
CVE-2022-31759 was published Jun 14, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the Ofbd, where a local user with elevated... High Unreviewed
CVE-2022-31599 was published Jul 5, 2022
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a... Moderate Unreviewed
CVE-2022-32136 was published Jun 25, 2022
Adobe Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 17.012... High Unreviewed
CVE-2022-34228 was published Jul 16, 2022
Adobe Photoshop versions 22.5.7 (and earlier) and 23.3.2 (and earlier) are affected by an Access... Moderate Unreviewed
CVE-2022-34244 was published Jul 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40649 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40645 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40642 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40646 was published Sep 16, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40643 was published Sep 16, 2022
Inkscape version 0.19 can access an uninitialized pointer, which may allow an attacker to have... Moderate Unreviewed
CVE-2021-42702 was published May 19, 2022
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0. High Unreviewed
CVE-2022-1809 was published May 22, 2022
ProTip! Advisories are also available from the GraphQL API