GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
406 advisories
Filter by severity
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc...
Moderate
Unreviewed
CVE-2024-3374
was published
May 14, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache...
Unknown
Unreviewed
CVE-2024-33601
was published
May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment...
High
Unreviewed
CVE-2023-43529
was published
May 6, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function...
Moderate
Unreviewed
CVE-2024-3567
was published
Apr 10, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
High
Unreviewed
CVE-2023-33096
was published
Mar 4, 2024
Transient DOS while processing multiple payload container type with incorrect container length...
High
Unreviewed
CVE-2023-33095
was published
Mar 4, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to...
High
Unreviewed
CVE-2024-25445
was published
Feb 9, 2024
Transient DOS while processing 11AZ RTT management action frame received through OTA.
High
Unreviewed
CVE-2023-43523
was published
Feb 6, 2024
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a...
High
Unreviewed
CVE-2023-34194
was published
Dec 13, 2023
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while...
High
Unreviewed
CVE-2023-33041
was published
Dec 5, 2023
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
High
Unreviewed
CVE-2023-33043
was published
Dec 5, 2023
Transient DOS in Data modem while handling TLB control messages from the Network.
High
Unreviewed
CVE-2023-33044
was published
Dec 5, 2023
The ACEManager
component of ALEOS 4.16 and earlier does not
perform input...
High
Unreviewed
CVE-2023-40462
was published
Dec 5, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32846
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32843
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32844
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32845
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32841
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32842
was published
Dec 4, 2023
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for...
Moderate
Unreviewed
CVE-2023-5871
was published
Nov 27, 2023
cordova-plugin-fingerprint-aio DoS vulnerability
Moderate
CVE-2021-43849
was published
for
cordova-plugin-fingerprint-aio
(npm)
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the...
Moderate
Unreviewed
CVE-2023-38473
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()...
Moderate
Unreviewed
CVE-2023-38470
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()...
Moderate
Unreviewed
CVE-2023-38472
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.
Moderate
Unreviewed
CVE-2023-38471
was published
Nov 2, 2023
ProTip!
Advisories are also available from the
GraphQL API