Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

158 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter... High Unreviewed
CVE-2026-43291 was published May 8, 2026
In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized... High Unreviewed
CVE-2026-43139 was published May 6, 2026
In the Linux kernel, the following vulnerability has been resolved: cifs: some missing... High Unreviewed
CVE-2026-31693 was published Apr 30, 2026
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs:... High Unreviewed
CVE-2026-31626 was published Apr 24, 2026
Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This... High Unreviewed
CVE-2026-6749 was published Apr 21, 2026
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Return the... High Unreviewed
CVE-2026-23317 was published Mar 25, 2026
An authenticated user with the read role may read limited amounts of uninitialized stack memory... High Unreviewed
CVE-2026-4147 was published Mar 17, 2026
Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This... High Unreviewed
CVE-2026-2794 was published Feb 24, 2026
GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2026-2044 was published Feb 21, 2026
Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0... High Unreviewed
CVE-2025-15281 was published Jan 20, 2026
Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library... High Unreviewed
CVE-2026-0915 was published Jan 16, 2026
A vulnerability has been identified in Simcenter Femap (All versions < V2512). The affected... High Unreviewed
CVE-2025-40829 was published Dec 12, 2025
A hard-coded password vulnerability exists in the ControlVault WBDI Driver functionality of Dell... High Unreviewed
CVE-2025-31649 was published Nov 18, 2025
A privilege escalation vulnerability exists in the ControlVault WBDI Driver WBIO_USH_ADD_RECORD... High Unreviewed
CVE-2025-31361 was published Nov 18, 2025
Use of uninitialized resource in Windows Kernel allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59194 was published Oct 14, 2025
A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper... High Unreviewed
CVE-2025-59964 was published Oct 9, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: fix uninititialized... High Unreviewed
CVE-2022-50546 was published Oct 7, 2025
In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix an uninit... High Unreviewed
CVE-2023-53578 was published Oct 4, 2025
In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso... High Unreviewed
CVE-2025-38718 was published Sep 5, 2025
In the Linux kernel, the following vulnerability has been resolved: pptp: ensure minimal skb... High Unreviewed
CVE-2025-38574 was published Aug 19, 2025
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix KMSAN uninit-value... High Unreviewed
CVE-2025-38579 was published Aug 19, 2025
Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to... High Unreviewed
CVE-2025-53759 was published Aug 12, 2025
VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure... High Unreviewed
CVE-2025-41239 was published Jul 15, 2025
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-49718 was published Jul 8, 2025
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate... High Unreviewed
CVE-2025-33070 was published Jun 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database