Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

133 advisories

Loading
Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2022-38083 was published Aug 11, 2023
Allocation of Resources Without Limits or Throttling, Improper Initialization vulnerability in B... Moderate Unreviewed
CVE-2023-3242 was published Jul 26, 2023
Vulnerability of signature verification in the iaware system being initialized later than the... Moderate Unreviewed
CVE-2022-48518 was published Jul 6, 2023
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed
CVE-2022-31477 was published May 10, 2023
The "Forget about this site" feature in the History pane is intended to remove all saved user... Moderate Unreviewed
CVE-2019-11747 was published May 24, 2022
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite ... Moderate Unreviewed
CVE-2018-2934 was published May 13, 2022
prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP... Moderate Unreviewed
CVE-2001-1471 was published Apr 30, 2022
An improper initialization vulnerability was found in Galleon. When using Galleon to provision... Moderate Unreviewed
CVE-2023-4503 was published Feb 6, 2024
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2020-16901 was published May 24, 2022
On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized.... Moderate Unreviewed
CVE-2023-5370 was published Oct 4, 2023
When the isula export command is used to export a container to an image and the container is... Moderate Unreviewed
CVE-2021-33637 was published Oct 29, 2023
iSulad uses the lcr+lxc runtime (default) to run malicious images, which can cause DOS. Moderate Unreviewed
CVE-2021-33634 was published Oct 29, 2023
Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an... Moderate Unreviewed
CVE-2023-27306 was published Nov 14, 2023
Jenkins Gogs Plugin vulnerable to unsafe default behavior and information disclosure Moderate
CVE-2023-40349 was published for org.jenkins-ci.plugins:gogs-webhook (Maven) Aug 16, 2023
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker... Moderate Unreviewed
CVE-2023-5078 was published Nov 9, 2023
When the isula cp command is used to copy files from a container to a host machine and the... Moderate Unreviewed
CVE-2021-33638 was published Oct 29, 2023
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data.... Moderate Unreviewed
CVE-2022-20015 was published Jan 5, 2022
A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software... Moderate Unreviewed
CVE-2021-34703 was published May 24, 2022
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion... Moderate Unreviewed
CVE-2021-22283 was published Feb 28, 2023
Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack Moderate Unreviewed
CVE-2021-3329 was published Feb 26, 2023
Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2022-32231 was published Feb 16, 2023
Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-30704 was published Feb 16, 2023
In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE... Moderate Unreviewed
CVE-2019-5605 was published May 24, 2022
Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed
CVE-2018-1118 was published May 13, 2022
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2016-6836 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database