GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
An Improper Initialization vulnerability in the routing protocol daemon (rpd) of Juniper Networks...
Moderate
Unreviewed
CVE-2022-22169
was published
Jan 20, 2022
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and...
High
Unreviewed
CVE-2021-20613
was published
Jan 15, 2022
Improper Initialization in Pillow
Moderate
CVE-2022-22815
was published
for
Pillow
(pip)
Jan 12, 2022
nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel before 5.12.13 allows local...
Moderate
Unreviewed
CVE-2021-46283
was published
Jan 12, 2022
The eID module has a vulnerability that causes the memory to be used without being initialized...
High
Unreviewed
CVE-2021-40025
was published
Jan 11, 2022
Resource Exhaustion Denial of Service in http-proxy-agent
Moderate
CVE-2019-10196
was published
for
http-proxy-agent
(npm)
Jan 6, 2022
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data....
Moderate
Unreviewed
CVE-2022-20015
was published
Jan 5, 2022
OpenZeppelin Contracts initializer reentrancy may lead to double initialization
Moderate
CVE-2022-39384
was published
for
@openzeppelin/contracts
(npm)
Dec 14, 2021
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure...
Low
Unreviewed
CVE-2021-36319
was published
Nov 21, 2021
UUPSUpgradeable vulnerability in @openzeppelin/contracts
Critical
CVE-2021-41264
was published
for
@openzeppelin/contracts
(npm)
Sep 15, 2021
Use of Uninitialized Resource in alg_ds
Critical
CVE-2020-36432
was published
for
alg_ds
(Rust)
Aug 25, 2021
Interpreter crash from `tf.io.decode_raw`
Moderate
CVE-2021-29614
was published
for
tensorflow
(pip)
May 21, 2021
Incomplete validation in `tf.raw_ops.CTCLoss`
Moderate
CVE-2021-29613
was published
for
tensorflow
(pip)
May 21, 2021
Incomplete validation in `SparseReshape`
Low
CVE-2021-29611
was published
for
tensorflow
(pip)
May 21, 2021
Invalid validation in `QuantizeAndDequantizeV2`
Low
CVE-2021-29610
was published
for
tensorflow
(pip)
May 21, 2021
Incomplete validation in `SparseAdd`
Moderate
CVE-2021-29609
was published
for
tensorflow
(pip)
May 21, 2021
Code execution vulnerability in HtmlUnit
High
CVE-2020-5529
was published
for
net.sourceforge.htmlunit:htmlunit
(Maven)
May 21, 2020
ProTip!
Advisories are also available from the
GraphQL API