GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,014
Erlang
29
GitHub Actions
16
Go
1,812
Maven
5,000+
npm
3,561
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
411 advisories
Filter by severity
Assertion occurs while processing Reconfiguration message due to improper validation
High
Unreviewed
CVE-2022-22060
was published
Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
High
Unreviewed
CVE-2022-33251
was published
Jun 6, 2023
xml-rs vulnerable to denial of service via invalid token in XML document
High
CVE-2023-34411
was published
for
xml-rs
(Rust)
Jun 5, 2023
malformed proposed intoto entries can cause a panic
Moderate
CVE-2023-33199
was published
for
github.com/sigstore/rekor
(Go)
May 26, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be...
High
Unreviewed
CVE-2023-23759
was published
May 19, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31918
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31921
was published
May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31916
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop...
Moderate
Unreviewed
CVE-2023-31920
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31919
was published
May 12, 2023
Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component...
Moderate
Unreviewed
CVE-2023-31913
was published
May 12, 2023
A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL...
High
Unreviewed
CVE-2023-2156
was published
May 10, 2023
llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements...
Moderate
Unreviewed
CVE-2023-29935
was published
May 5, 2023
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication...
High
Unreviewed
CVE-2022-40504
was published
May 2, 2023
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
High
Unreviewed
CVE-2022-34144
was published
May 2, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross...
High
Unreviewed
CVE-2022-40508
was published
May 2, 2023
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability...
High
Unreviewed
CVE-2022-36440
was published
Apr 3, 2023
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the...
High
Unreviewed
CVE-2023-27789
was published
Mar 16, 2023
An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of...
High
Unreviewed
CVE-2023-27783
was published
Mar 16, 2023
An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via...
High
Unreviewed
CVE-2023-27788
was published
Mar 16, 2023
Transient DOS in modem due to reachable assertion.
High
Unreviewed
CVE-2022-33272
was published
Mar 10, 2023
Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
High
Unreviewed
CVE-2022-33254
was published
Mar 10, 2023
Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
High
Unreviewed
CVE-2022-33244
was published
Mar 10, 2023
Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message...
High
Unreviewed
CVE-2022-33250
was published
Mar 10, 2023
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
High
Unreviewed
CVE-2022-40527
was published
Mar 10, 2023
ProTip!
Advisories are also available from the
GraphQL API