Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,778
Erlang
35
GitHub Actions
29
Go
2,332
Maven
5,000+
npm
3,966
NuGet
713
pip
3,759
Pub
12
RubyGems
921
Rust
975
Swift
38
Unreviewed advisories
All unreviewed
5,000+

135 advisories

Loading
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function... High Unreviewed
CVE-2025-26599 was published Feb 25, 2025
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2025-43545 was published May 13, 2025
Animate versions 24.0.8, 23.0.11 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2025-43557 was published May 13, 2025
Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Access of Uninitialized... High Unreviewed
CVE-2025-30326 was published May 13, 2025
Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2025-1047 was published Apr 23, 2025
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
Within the <code>lg_init()</code> function, if several allocations succeed but then one fails, an... High Unreviewed
CVE-2022-34480 was published Dec 22, 2022
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X... High Unreviewed
CVE-2016-1005 was published May 17, 2022
Luxion KeyShot DAE File Parsing Access of Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2025-2530 was published Mar 25, 2025
A denial-of-service vulnerability exists in the "GetWebLoginCredentials" function in "Sante PACS... High Unreviewed
CVE-2025-2284 was published Mar 13, 2025
Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... High Unreviewed
CVE-2025-27158 was published Mar 11, 2025
Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... High Unreviewed
CVE-2025-27162 was published Mar 11, 2025
In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer... High Unreviewed
CVE-2024-57943 was published Jan 21, 2025
Windows Runtime Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21971 was published Feb 10, 2022
An access of uninitialized pointer (CWE-824) vulnerability in FortiWLC versions 8.6.0, 8.5.3 and... High Unreviewed
CVE-2021-26093 was published Dec 19, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2024-45155 was published Dec 10, 2024
IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-9258 was published Nov 23, 2024
Unitialized access in `EinsumHelper::ParseEquation` High
CVE-2021-41201 was published for tensorflow (pip) Nov 10, 2021
Reference binding to nullptr in shape inference High
CVE-2021-37676 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in map operations High
CVE-2021-37671 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in unicode encoding High
CVE-2021-37667 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `RaggedTensorToVariant` High
CVE-2021-37666 was published for tensorflow (pip) Aug 25, 2021
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked... High Unreviewed
CVE-2024-46951 was published Nov 10, 2024
Reference binding to `nullptr` in `tf.ragged.cross` High
CVE-2021-41214 was published for tensorflow (pip) Nov 10, 2021
Undefined behavior via `nullptr` reference binding in sparse matrix multiplication High
CVE-2021-41219 was published for tensorflow (pip) Nov 10, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database