GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
132 advisories
Filter by severity
Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R)...
Moderate
Unreviewed
CVE-2024-25563
was published
Nov 13, 2024
Improper initialization for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software...
Moderate
Unreviewed
CVE-2023-28720
was published
Oct 29, 2024
Improper initialization in some Intel(R) MAS software before version 2.3 may allow an...
Moderate
Unreviewed
CVE-2023-36490
was published
Oct 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
nfsd: ensure that...
Moderate
Unreviewed
CVE-2024-46697
was published
Sep 13, 2024
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable:...
Moderate
Unreviewed
CVE-2024-45018
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
fuse: Initialize beyond-EOF...
Moderate
Unreviewed
CVE-2024-44947
was published
Sep 2, 2024
Improper initialization in firmware for some Intel(R) CSME may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-48361
was published
Aug 14, 2024
Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR17, 4.0.0 SR07, 4.1.0 SR04, 4.2.0...
Moderate
Unreviewed
CVE-2023-40261
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
nfsd: initialise nfsd_info...
Moderate
Unreviewed
CVE-2024-42078
was published
Jul 29, 2024
Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A...
Moderate
Unreviewed
CVE-2023-32467
was published
Jul 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: v4l: async: Properly...
Moderate
Unreviewed
CVE-2024-39485
was published
Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
net/9p: fix uninit-value in...
Moderate
Unreviewed
CVE-2024-39301
was published
Jun 25, 2024
Improper initialization in some Intel(R) Power Gadget software for Windwos all versions may allow...
Moderate
Unreviewed
CVE-2023-45315
was published
May 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
Input: appletouch -...
Moderate
Unreviewed
CVE-2021-46932
was published
Feb 27, 2024
An improper initialization vulnerability was found in Galleon. When using Galleon to provision...
Moderate
Unreviewed
CVE-2023-4503
was published
Feb 6, 2024
Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an...
Moderate
Unreviewed
CVE-2023-27306
was published
Nov 14, 2023
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker...
Moderate
Unreviewed
CVE-2023-5078
was published
Nov 9, 2023
When the isula export command is used to export a container to an image and the container is...
Moderate
Unreviewed
CVE-2021-33637
was published
Oct 29, 2023
When the isula cp command is used to copy files from a container to a host machine and the...
Moderate
Unreviewed
CVE-2021-33638
was published
Oct 29, 2023
iSulad uses the lcr+lxc runtime (default) to run malicious images, which can cause DOS.
Moderate
Unreviewed
CVE-2021-33634
was published
Oct 29, 2023
On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized....
Moderate
Unreviewed
CVE-2023-5370
was published
Oct 4, 2023
Improper initialization of variables in the DXE driver may allow a privileged user to leak...
Moderate
Unreviewed
CVE-2023-20597
was published
Sep 20, 2023
Improper initialization of variables in the DXE driver may allow a privileged user to leak...
Moderate
Unreviewed
CVE-2023-20594
was published
Sep 20, 2023
Jenkins Gogs Plugin vulnerable to unsafe default behavior and information disclosure
Moderate
CVE-2023-40349
was published
for
org.jenkins-ci.plugins:gogs-webhook
(Maven)
Aug 16, 2023
Improper initialization in BIOS firmware for some Intel(R) NUCs may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-27887
was published
Aug 11, 2023
ProTip!
Advisories are also available from the
GraphQL API