GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,282
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,105
Rust
1,490
Swift
61
Unreviewed advisories
All unreviewed
5,000+
111 advisories
Filter by severity
A malicious actor with access to the network and under certain conditions could exploit an...
High
Unreviewed
CVE-2026-54409
was published
Jul 2, 2026
Meridian: Multiple defense-in-depth gaps (collection/depth caps, telemetry, retry, fan-out)
High
GHSA-f5v8-v6q3-q4h6
was published
for
Meridian.Mapping
(NuGet)
Apr 16, 2026
A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that...
High
Unreviewed
CVE-2026-0940
was published
Mar 11, 2026
An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for...
High
Unreviewed
CVE-2025-66363
was published
Mar 3, 2026
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of...
High
Unreviewed
CVE-2026-21913
was published
Jan 15, 2026
An “uninitialized variable” code execution vulnerability exists in the
Rockwell Automation...
High
Unreviewed
CVE-2024-11158
was published
Dec 5, 2024
The fetch(3) library uses environment variables for passing certain information, including the...
High
Unreviewed
CVE-2024-45289
was published
Nov 12, 2024
NVIDIA GPU Display Driver for Windows contains a vulnerability where the information from a...
High
Unreviewed
CVE-2024-0089
was published
Jun 14, 2024
ZTE ZXUN-ePDG product, which serves as the network node of the VoWifi system, under by default...
High
Unreviewed
CVE-2024-22064
was published
May 14, 2024
Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2023-27325
was published
May 3, 2024
Parallels Desktop Service Improper Initialization Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2023-27322
was published
May 3, 2024
Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2023-27324
was published
May 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
cfg80211: call...
High
Unreviewed
CVE-2021-47194
was published
Apr 10, 2024
p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of...
High
Unreviewed
CVE-2024-28084
was published
Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix accesses to uninit...
High
Unreviewed
CVE-2023-52452
was published
Feb 22, 2024
Improper initialization of x87 and SSE floating-point configuration registers in the...
High
Unreviewed
CVE-2022-46487
was published
Dec 30, 2023
Katran could disclose non-initialized kernel memory as part of an IP header. The issue was...
High
Unreviewed
CVE-2023-49062
was published
Nov 28, 2023
Improper initialization in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an...
High
Unreviewed
CVE-2023-28737
was published
Nov 14, 2023
Global variable extraction in bitrix/modules/main/tools.php in Bitrix24 22.0.300 allows...
High
Unreviewed
CVE-2023-1719
was published
Nov 1, 2023
When the isula load command is used to load malicious images, attackers can execute arbitrary...
High
Unreviewed
CVE-2021-33636
was published
Oct 29, 2023
When malicious images are pulled by isula pull, attackers can execute arbitrary code.
High
Unreviewed
CVE-2021-33635
was published
Oct 29, 2023
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL)...
High
Unreviewed
CVE-2023-40596
was published
Aug 30, 2023
GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond ...
High
Unreviewed
CVE-2020-35342
was published
Aug 22, 2023
A memory initialization issue was addressed. This issue is fixed in macOS Ventura 13.3. A remote...
High
Unreviewed
CVE-2023-27934
was published
May 8, 2023
A malicious actor may convince a victim to open a malicious USD file that may trigger an...
High
Unreviewed
CVE-2023-25010
was published
Apr 17, 2023
ProTip!
Advisories are also available from the
GraphQL API