) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
This is not the latest report. Click
here to view the latest report.
CWE Statistics for GitHub, Inc. as of 01/16/2026
9924
40
40
25
Reference
0-69.9%
|
|
Provider |
62.5
Contributor
70-94.9%
Provider
95-100%
| CVE | CNA Value | Alignment | NIST Value | Reason |
|---|---|---|---|---|
| CVE-2024-24576 (2 of 2) | CWE-78 | CWE-78 | ||
| CWE-88 | More specific CWE option available | |||
| CVE-2025-55204 (0 of 1) | CWE-94 | ≠ | CWE-79 | More specific CWE option available |
| CVE-2025-59158 (0 of 1) | CWE-116 | ≠ | CWE-79 | More specific CWE option available |
| CVE-2025-64325 (2 of 2) | CWE-79 | CWE-79 | ||
| CWE-116 | More specific CWE option available | |||
| CVE-2025-64338 (2 of 2) | CWE-79 | CWE-79 | ||
| CWE-269 | More specific CWE option available | |||
| CVE-2025-65026 (0 of 1) | CWE-94 | ≠ | CWE-79 | More specific CWE option available |
| CVE-2025-66022 (1 of 2) | CWE-287 | ≠ | CWE-862 | More specific CWE option available |
| CWE-829 | More specific CWE option available | |||
| CVE-2025-66449 (3 of 3) | CWE-22 | CWE-22 | ||
| CWE-434 | More specific CWE option available | |||
| CWE-73 | More specific CWE option available | |||
| CVE-2025-66580 (0 of 1) | CWE-94 | ≠ | CWE-79 | More specific CWE option available |
| CVE-2025-67732 (2 of 2) | CWE-522 | CWE-522 | ||
| CWE-200 | More specific CWE option available | |||
| CVE-2025-68110 (2 of 2) | CWE-209 | CWE-209 | ||
| CWE-200 | ||||
| CVE-2025-68456 (2 of 2) | CWE-770 | CWE-770 | ||
| CWE-202 | More specific CWE option available | |||
| CVE-2025-68478 (1 of 1) | CWE-73 | CWE-610 | ||
| CVE-2025-68948 (1 of 1) | CWE-321 | CWE-798 | ||
| CVE-2025-69202 (3 of 3) | CWE-639 | CWE-639 | ||
| CWE-524 | More specific CWE option available | |||
| CWE-573 | More specific CWE option available | |||
| CVE-2025-69220 (2 of 2) | CWE-862 | CWE-862 | ||
| CWE-284 | More specific CWE option available | |||
| CVE-2025-69221 (2 of 2) | CWE-862 | CWE-862 | ||
| CWE-284 | More specific CWE option available | |||
| CVE-2026-21495 (2 of 2) | CWE-369 | CWE-369 | ||
| CWE-20 | More specific CWE option available | |||
| CVE-2026-21496 (4 of 4) | CWE-476 | CWE-476 | ||
| CWE-690 | CWE-476 | |||
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CVE-2026-21497 (3 of 3) | CWE-476 | CWE-476 | ||
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CVE-2026-21498 (4 of 4) | CWE-476 | CWE-476 | ||
| CWE-690 | CWE-476 | |||
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CVE-2026-21499 (3 of 3) | CWE-476 | CWE-476 | ||
| CWE-690 | CWE-476 | |||
| CWE-20 | More specific CWE option available | |||
| CVE-2026-21500 (3 of 4) | CWE-1119 | ≠ | CWE-787 | More specific CWE option available |
| CWE-20 | More specific CWE option available | |||
| CWE-400 | More specific CWE option available | |||
| CWE-674 | More specific CWE option available | |||
| CVE-2026-21501 (0 of 1) | CWE-20 | ≠ | CWE-787 | More specific CWE option available |
| CVE-2026-21502 (4 of 4) | CWE-476 | CWE-476 | ||
| CWE-690 | CWE-476 | |||
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CVE-2026-21503 (4 of 4) | CWE-476 | CWE-476 | ||
| CWE-131 | More specific CWE option available | |||
| CWE-20 | More specific CWE option available | |||
| CWE-628 | More specific CWE option available | |||
| CVE-2026-21504 (3 of 3) | CWE-122 | CWE-787 | ||
| CWE-787 | CWE-787 | |||
| CWE-193 | More specific CWE option available | |||
| CVE-2026-21506 (2 of 2) | CWE-476 | CWE-476 | ||
| CWE-20 | More specific CWE option available | |||
| CVE-2026-21678 (4 of 4) | CWE-122 | CWE-787 | ||
| CWE-787 | CWE-787 | |||
| CWE-125 | More specific CWE option available | |||
| CWE-20 | More specific CWE option available | |||
| CVE-2026-21679 (0 of 1) | CWE-20 | ≠ | CWE-787 | More specific CWE option available |
| CVE-2026-21683 (0 of 1) | CWE-20 | ≠ | CWE-843 | More specific CWE option available |
| CVE-2026-21689 (5 of 6) | CWE-190 | ≠ | CWE-843 | More specific CWE option available |
| CWE-20 | More specific CWE option available | |||
| CWE-232 | More specific CWE option available | |||
| CWE-476 | More specific CWE option available | |||
| CWE-690 | More specific CWE option available | |||
| CWE-754 | More specific CWE option available | |||
| CVE-2026-21690 (2 of 3) | CWE-20 | ≠ | CWE-843 | More specific CWE option available |
| CWE-457 | More specific CWE option available | |||
| CWE-475 | More specific CWE option available | |||
| CVE-2026-21691 (4 of 5) | CWE-1025 | ≠ | CWE-843 | More specific CWE option available |
| CWE-140 | More specific CWE option available | |||
| CWE-20 | More specific CWE option available | |||
| CWE-476 | More specific CWE option available | |||
| CWE-697 | More specific CWE option available | |||
| CVE-2026-22042 (2 of 2) | CWE-863 | CWE-863 | ||
| CWE-285 | More specific CWE option available | |||
| CVE-2026-22043 (1 of 2) | CWE-269 | ≠ | CWE-522 | More specific CWE option available |
| CWE-284 | More specific CWE option available | |||
| CVE-2026-22046 (3 of 4) | CWE-130 | ≠ | CWE-787 | More specific CWE option available |
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CWE-843 | More specific CWE option available | |||
| CVE-2026-22047 (2 of 3) | CWE-130 | ≠ | CWE-787 | More specific CWE option available |
| CWE-20 | More specific CWE option available | |||
| CWE-252 | More specific CWE option available | |||
| CVE-2026-22242 (1 of 1) | CWE-564 | CWE-89 | ||
| CVE-2026-22244 (1 of 1) | CWE-1336 | CWE-94 |