Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

157 advisories

Loading
FUSE-Rust: Uninitalized memory read and leak caused by fuser crate High
GHSA-cvmj-47v9-35m9 was published for fuser (Rust) Sep 15, 2025
Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to... High Unreviewed
CVE-2025-53759 was published Aug 12, 2025
VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure... High Unreviewed
CVE-2025-41239 was published Jul 15, 2025
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-49718 was published Jul 8, 2025
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate... High Unreviewed
CVE-2025-33070 was published Jun 10, 2025
Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration ... High Unreviewed
CVE-2023-37930 was published Apr 8, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1649 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1427 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1650 was published Mar 13, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix... High Unreviewed
CVE-2024-57905 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: pressure: zpa2326: fix... High Unreviewed
CVE-2024-57912 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads8688: fix... High Unreviewed
CVE-2024-57906 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix... High Unreviewed
CVE-2024-57908 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: rockchip_saradc:... High Unreviewed
CVE-2024-57907 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1745: fix... High Unreviewed
CVE-2024-57909 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: dummy:... High Unreviewed
CVE-2024-57911 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: light: vcnl4035: fix... High Unreviewed
CVE-2024-57910 was published Jan 19, 2025
Microsoft Message Queuing Information Disclosure Vulnerability High Unreviewed
CVE-2025-21220 was published Jan 14, 2025
An uninitialized resource in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... High Unreviewed
CVE-2024-13164 was published Jan 14, 2025
A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums.... High Unreviewed
CVE-2024-12085 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix uninitialized... High Unreviewed
CVE-2024-53155 was published Dec 24, 2024
Another “uninitialized variable” code execution vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-11364 was published Dec 19, 2024
In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to... High Unreviewed
CVE-2018-9381 was published Dec 2, 2024
Information disclosure due to uninitialized variable. High Unreviewed
CVE-2017-18306 was published Nov 26, 2024
Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution... High Unreviewed
CVE-2024-9717 was published Nov 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database