Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,016
Erlang
29
GitHub Actions
16
Go
1,827
Maven
5,000+
npm
3,571
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

181 advisories

Loading
Client queries that trigger serving stale data and that also require lookups in local... High Unreviewed
CVE-2024-4076 was published Jul 23, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache... High Unreviewed
CVE-2024-33601 was published May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment... High Unreviewed
CVE-2023-43529 was published May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS... High Unreviewed
CVE-2024-34475 was published May 5, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an... High Unreviewed
CVE-2024-31744 was published Apr 19, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. High Unreviewed
CVE-2023-33096 was published Mar 4, 2024
Transient DOS while processing multiple payload container type with incorrect container length... High Unreviewed
CVE-2023-33095 was published Mar 4, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to... High Unreviewed
CVE-2024-25445 was published Feb 9, 2024
Transient DOS while processing 11AZ RTT management action frame received through OTA. High Unreviewed
CVE-2023-43523 was published Feb 6, 2024
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a... High Unreviewed
CVE-2023-34194 was published Dec 13, 2023
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while... High Unreviewed
CVE-2023-33041 was published Dec 5, 2023
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP. High Unreviewed
CVE-2023-33043 was published Dec 5, 2023
Transient DOS in Data modem while handling TLB control messages from the Network. High Unreviewed
CVE-2023-33044 was published Dec 5, 2023
The ACEManager component of ALEOS 4.16 and earlier does not perform input... High Unreviewed
CVE-2023-40462 was published Dec 5, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32846 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32844 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32843 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32845 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32841 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32842 was published Dec 4, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate... High Unreviewed
CVE-2023-4236 was published Sep 20, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
ProTip! Advisories are also available from the GraphQL API