Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,694
Erlang
34
GitHub Actions
28
Go
2,284
Maven
5,000+
npm
3,936
NuGet
708
pip
3,706
Pub
12
RubyGems
919
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

128 advisories

Loading
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function... High Unreviewed
CVE-2025-26599 was published Feb 25, 2025
Animate versions 24.0.8, 23.0.11 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2025-43557 was published May 13, 2025
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2025-43545 was published May 13, 2025
Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Access of Uninitialized... High Unreviewed
CVE-2025-30326 was published May 13, 2025
Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2025-1047 was published Apr 23, 2025
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
Within the <code>lg_init()</code> function, if several allocations succeed but then one fails, an... High Unreviewed
CVE-2022-34480 was published Dec 22, 2022
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X... High Unreviewed
CVE-2016-1005 was published May 17, 2022
Luxion KeyShot DAE File Parsing Access of Uninitialized Pointer Remote Code Execution... High Unreviewed
CVE-2025-2530 was published Mar 25, 2025
A denial-of-service vulnerability exists in the "GetWebLoginCredentials" function in "Sante PACS... High Unreviewed
CVE-2025-2284 was published Mar 13, 2025
Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... High Unreviewed
CVE-2025-27158 was published Mar 11, 2025
Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... High Unreviewed
CVE-2025-27162 was published Mar 11, 2025
In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer... High Unreviewed
CVE-2024-57943 was published Jan 21, 2025
Windows Runtime Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21971 was published Feb 10, 2022
An access of uninitialized pointer (CWE-824) vulnerability in FortiWLC versions 8.6.0, 8.5.3 and... High Unreviewed
CVE-2021-26093 was published Dec 19, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2024-45155 was published Dec 10, 2024
IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-9258 was published Nov 23, 2024
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked... High Unreviewed
CVE-2024-46951 was published Nov 10, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix uninitialized... High Unreviewed
CVE-2024-50088 was published Oct 29, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by an Access of Uninitialized Pointer... High Unreviewed
CVE-2024-47411 was published Oct 9, 2024
In the Linux kernel, the following vulnerability has been resolved: um: line: always fill ... High Unreviewed
CVE-2024-46844 was published Sep 27, 2024
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-1770 was published May 14, 2022
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri... High Unreviewed
CVE-2021-29098 was published May 24, 2022
When IPsec is configured on a virtual server, undisclosed traffic can cause the Traffic... High Unreviewed
CVE-2024-33608 was published May 8, 2024
Memory corruption while verifying the serialized header when the key pairs are generated. High Unreviewed
CVE-2023-43531 was published May 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database