Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

140 advisories

Loading
An access violation vulnerability exists in the eventcore functionality of Milesight UR32L v32.3... High Unreviewed
CVE-2023-23571 was published Jul 6, 2023
Memory Corruption in WLAN HOST while fetching TX status information. High Unreviewed
CVE-2023-28542 was published Jul 4, 2023
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. High Unreviewed
CVE-2023-28541 was published Jul 4, 2023
Transient DOS while parsing WLAN beacon or probe-response frame. High Unreviewed
CVE-2023-21661 was published Jun 6, 2023
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source... High Unreviewed
CVE-2023-21669 was published Jun 6, 2023
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame. High Unreviewed
CVE-2023-21658 was published Jun 6, 2023
Transient DOS in WLAN Firmware while processing frames with missing header fields. High Unreviewed
CVE-2023-21659 was published Jun 6, 2023
Transient DOS in WLAN Firmware while parsing FT Information Elements. High Unreviewed
CVE-2023-21660 was published Jun 6, 2023
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report... Moderate Unreviewed
CVE-2022-33273 was published May 2, 2023
Information disclosure due to buffer over-read in Modem while parsing DNS hostname. High Unreviewed
CVE-2022-40505 was published May 2, 2023
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by... High Unreviewed
CVE-2022-33228 was published Apr 13, 2023
Information disclosure in modem due to improper check of IP type while processing DNS server query High Unreviewed
CVE-2022-25730 was published Apr 13, 2023
Information disclosure in modem data due to array out of bound access while handling the incoming... High Unreviewed
CVE-2022-25726 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while receiving a IP header with... High Unreviewed
CVE-2022-33291 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while parsing the wms message received... High Unreviewed
CVE-2022-33295 was published Apr 13, 2023
Information disclosure due to buffer over-read in modem while reading configuration parameters. High Unreviewed
CVE-2022-33258 was published Apr 13, 2023
Information disclosure due to buffer over-read while parsing DNS response packets in Modem. High Unreviewed
CVE-2022-33222 was published Apr 13, 2023
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP... High Unreviewed
CVE-2022-25747 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented... High Unreviewed
CVE-2022-33287 was published Apr 13, 2023
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. High Unreviewed
CVE-2022-40503 was published Apr 13, 2023
Information disclosure due to buffer overread in Linux sensors Moderate Unreviewed
CVE-2022-33297 was published Apr 13, 2023
On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe)... High Unreviewed
CVE-2023-24513 was published Apr 12, 2023
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size... High Unreviewed
CVE-2022-33309 was published Mar 10, 2023
Transient DOS due to buffer over-read in WLAN while sending a packet to device. High Unreviewed
CVE-2022-40535 was published Mar 10, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV. High Unreviewed
CVE-2023-0817 was published Feb 14, 2023
ProTip! Advisories are also available from the GraphQL API