Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

313 advisories

Loading
Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2023-4758 was published Sep 4, 2023
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-38172 was published Aug 8, 2023
Transient DOS in Audio while remapping channel buffer in media codec decoding. High Unreviewed
CVE-2023-28555 was published Aug 8, 2023
Information disclosure in Network Services due to buffer over-read while the device receives DNS... High Unreviewed
CVE-2023-21625 was published Aug 8, 2023
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection... Moderate Unreviewed
CVE-2023-3649 was published Jul 14, 2023
An access violation vulnerability exists in the eventcore functionality of Milesight UR32L v32.3... High Unreviewed
CVE-2023-23571 was published Jul 6, 2023
Memory Corruption in WLAN HOST while fetching TX status information. High Unreviewed
CVE-2023-28542 was published Jul 4, 2023
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. High Unreviewed
CVE-2023-28541 was published Jul 4, 2023
`openssl` `X509VerifyParamRef::set_host` buffer over-read Moderate
CVE-2023-53159 was published for openssl (Rust) Jun 21, 2023
Transient DOS in WLAN Firmware while parsing FT Information Elements. High Unreviewed
CVE-2023-21660 was published Jun 6, 2023
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame. High Unreviewed
CVE-2023-21658 was published Jun 6, 2023
Transient DOS in WLAN Firmware while processing frames with missing header fields. High Unreviewed
CVE-2023-21659 was published Jun 6, 2023
Transient DOS while parsing WLAN beacon or probe-response frame. High Unreviewed
CVE-2023-21661 was published Jun 6, 2023
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source... High Unreviewed
CVE-2023-21669 was published Jun 6, 2023
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report... Moderate Unreviewed
CVE-2022-33273 was published May 2, 2023
Information disclosure due to buffer over-read in Modem while parsing DNS hostname. High Unreviewed
CVE-2022-40505 was published May 2, 2023
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP... High Unreviewed
CVE-2022-25747 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while receiving a IP header with... High Unreviewed
CVE-2022-33291 was published Apr 13, 2023
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by... High Unreviewed
CVE-2022-33228 was published Apr 13, 2023
Information disclosure in modem data due to array out of bound access while handling the incoming... High Unreviewed
CVE-2022-25726 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while parsing the wms message received... High Unreviewed
CVE-2022-33295 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented... High Unreviewed
CVE-2022-33287 was published Apr 13, 2023
Information disclosure due to buffer over-read in modem while reading configuration parameters. High Unreviewed
CVE-2022-33258 was published Apr 13, 2023
Information disclosure due to buffer over-read while parsing DNS response packets in Modem. High Unreviewed
CVE-2022-33222 was published Apr 13, 2023
Information disclosure in modem due to improper check of IP type while processing DNS server query High Unreviewed
CVE-2022-25730 was published Apr 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database