GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
54 advisories
Filter by severity
Golang FIPS OpenSSL has a Use of Uninitialized Variable vulnerability
High
CVE-2024-9355
was published
for
github.com/golang-fips/openssl
(Go)
Oct 1, 2024
Delta Electronics CNCSoft-G2 lacks proper initialization of memory prior to accessing it. An...
High
Unreviewed
CVE-2024-47966
was published
Oct 10, 2024
Uninitialized Use in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7022
was published
Sep 24, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45617
was published
Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45616
was published
Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45615
was published
Sep 4, 2024
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or...
Low
Unreviewed
CVE-2024-45618
was published
Sep 4, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7541
was published
Aug 6, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7542
was published
Aug 6, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7540
was published
Aug 6, 2024
HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c.
Critical
Unreviewed
CVE-2024-32611
was published
May 14, 2024
Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote...
High
Unreviewed
CVE-2024-6990
was published
Aug 1, 2024
Helm's Missing YAML Content Leads To Panic
High
CVE-2024-26147
was published
for
helm.sh/helm/v3
(Go)
Feb 22, 2024
Memory corruption while processing IOCTL call to set metainfo.
High
Unreviewed
CVE-2024-33021
was published
Aug 5, 2024
A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can...
High
Unreviewed
CVE-2024-23137
was published
Feb 22, 2024
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk...
High
Unreviewed
CVE-2024-23159
was published
Jun 25, 2024
A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,...
High
Unreviewed
CVE-2024-37002
was published
Jun 25, 2024
An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name...
Low
Unreviewed
CVE-2024-31636
was published
May 3, 2024
Vulnerabilities with the k8sGPT
High
GHSA-85rg-8m6h-825p
was published
for
github.com/k8sgpt-ai/k8sgpt
(Go)
Jun 13, 2024
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an...
High
Unreviewed
CVE-2023-6324
was published
May 15, 2024
Foxit PDF Reader Annotation Use of Uninitialized Variable Information Disclosure Vulnerability....
Low
Unreviewed
CVE-2021-34951
was published
May 8, 2024
Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2021-34953
was published
May 8, 2024
An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 while parsing HTTP requests....
Moderate
Unreviewed
CVE-2023-40533
was published
May 1, 2024
PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability....
Low
Unreviewed
CVE-2023-42048
was published
May 3, 2024
PDF-XChange Editor U3D File Parsing Uninitialized Variable Information Disclosure Vulnerability....
Low
Unreviewed
CVE-2023-42056
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API