Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,014
Erlang
29
GitHub Actions
16
Go
1,812
Maven
5,000+
npm
3,561
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+

215 advisories

Loading
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR... Moderate Unreviewed
CVE-2024-23350 was published Aug 5, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc... Moderate Unreviewed
CVE-2024-3374 was published May 14, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via... Moderate Unreviewed
CVE-2024-33255 was published Apr 26, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function... Moderate Unreviewed
CVE-2024-3567 was published Apr 10, 2024
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for... Moderate Unreviewed
CVE-2023-5871 was published Nov 27, 2023
cordova-plugin-fingerprint-aio DoS vulnerability Moderate
CVE-2021-43849 was published for cordova-plugin-fingerprint-aio (npm) Nov 2, 2023
0xWise64
A vulnerability was found in Avahi. A reachable assertion exists in the... Moderate Unreviewed
CVE-2023-38473 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function. Moderate Unreviewed
CVE-2023-38471 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()... Moderate Unreviewed
CVE-2023-38470 was published Nov 2, 2023
A vulnerability was found in Avahi, where a reachable assertion exists in... Moderate Unreviewed
CVE-2023-38469 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()... Moderate Unreviewed
CVE-2023-38472 was published Nov 2, 2023
A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2022-37052 was published Aug 22, 2023
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2021-46179 was published Aug 22, 2023
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function... Moderate Unreviewed
CVE-2022-35205 was published Aug 22, 2023
An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead... Moderate Unreviewed
CVE-2022-38349 was published Aug 22, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of... Moderate Unreviewed
CVE-2022-37051 was published Aug 22, 2023
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by... Moderate Unreviewed
CVE-2021-31294 was published Jul 16, 2023
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-36840 was published Jul 14, 2023
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook... Moderate Unreviewed
CVE-2023-37836 was published Jul 14, 2023
malformed proposed intoto entries can cause a panic Moderate
CVE-2023-33199 was published for github.com/sigstore/rekor (Go) May 26, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31918 was published May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31921 was published May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31916 was published May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop... Moderate Unreviewed
CVE-2023-31920 was published May 12, 2023
Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component... Moderate Unreviewed
CVE-2023-31913 was published May 12, 2023
ProTip! Advisories are also available from the GraphQL API