Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

121 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-14282 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-10484 was published May 13, 2022
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer... High Unreviewed
CVE-2019-3836 was published May 14, 2022
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-1770 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2016-10447 was published May 14, 2022
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0... High Unreviewed
CVE-2016-4343 was published May 14, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16378 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16377 was published May 17, 2022
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8,... High Unreviewed
CVE-2010-1818 was published May 17, 2022
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X... High Unreviewed
CVE-2016-1005 was published May 17, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... High Unreviewed
CVE-2022-29033 was published May 21, 2022
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0. High Unreviewed
CVE-2022-1809 was published May 22, 2022
A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating... High Unreviewed
CVE-2019-1869 was published May 24, 2022
An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86,... High Unreviewed
CVE-2019-12870 was published May 24, 2022
In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a... High Unreviewed
CVE-2019-13527 was published May 24, 2022
An exploitable uninitialized pointer vulnerability exists in the Word document parser of the the... High Unreviewed
CVE-2018-3983 was published May 24, 2022
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote... High Unreviewed
CVE-2020-27778 was published May 24, 2022
An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to... High Unreviewed
CVE-2020-17469 was published May 24, 2022
An uninitialized pointer issue has been identified in the way the application processes project... High Unreviewed
CVE-2021-22639 was published May 24, 2022
An uninitialized pointer may be exploited in Fatek FvDesigner Version 1.5.76 and prior while the... High Unreviewed
CVE-2021-22670 was published May 24, 2022
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri... High Unreviewed
CVE-2021-29098 was published May 24, 2022
Polaris Office v9.103.83.44230 is affected by a Uninitialized Pointer Vulnerability in... High Unreviewed
CVE-2021-34280 was published May 24, 2022
A CWE-824: Access of uninitialized pointer vulnerability exists inIGSS Definition (Def.exe) V15.0... High Unreviewed
CVE-2021-22758 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-31479 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database