Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

195 advisories

Loading
Asyncpg Arbitrary Code Execution Via Access to an Uninitialized Pointer Critical
CVE-2020-17446 was published for asyncpg (pip) Apr 20, 2021
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via... Moderate Unreviewed
CVE-2024-8645 was published Sep 10, 2024
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-1770 was published May 14, 2022
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri... High Unreviewed
CVE-2021-29098 was published May 24, 2022
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-32998 was published May 14, 2024
When IPsec is configured on a virtual server, undisclosed traffic can cause the Traffic... High Unreviewed
CVE-2024-33608 was published May 8, 2024
Memory corruption while verifying the serialized header when the key pairs are generated. High Unreviewed
CVE-2023-43531 was published May 6, 2024
Ashlar-Vellum Cobalt AR File Parsing Uninitialized Memory Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-35715 was published May 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Uninitialized Memory Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-35713 was published May 3, 2024
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2023-34272 was published May 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Uninitialized Memory Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-35712 was published May 3, 2024
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2023-34263 was published May 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Uninitialized Pointer Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-34288 was published May 3, 2024
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the... High Unreviewed
CVE-2022-33280 was published Feb 12, 2023
Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that... High Unreviewed
CVE-2023-27858 was published Oct 27, 2023
Adobe Photoshop versions 23.5.5 (and earlier) and 24.7 (and earlier) are affected by an Access of... High Unreviewed
CVE-2023-26370 was published Oct 11, 2023
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... High Unreviewed
CVE-2023-38246 was published Aug 10, 2023
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... High Unreviewed
CVE-2023-38234 was published Aug 10, 2023
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... High Unreviewed
CVE-2023-38223 was published Aug 10, 2023
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... High Unreviewed
CVE-2023-38226 was published Aug 10, 2023
A use of uninitialized pointer vulnerability exists in the PQS format pFormat functionality of... High Unreviewed
CVE-2022-46280 was published Jul 21, 2023
A use of uninitialized pointer vulnerability exists in the MSI format atom functionality of Open... High Unreviewed
CVE-2022-44451 was published Jul 21, 2023
A use of uninitialized pointer vulnerability exists in the GRO format res functionality of Open... High Unreviewed
CVE-2022-42885 was published Jul 21, 2023
Adobe Substance 3D Designer version 12.4.1 (and earlier) is affected by an Access of... High Unreviewed
CVE-2023-21618 was published Jun 15, 2023
A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0... Moderate Unreviewed
CVE-2023-29178 was published Jun 13, 2023
ProTip! Advisories are also available from the GraphQL API