Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

314 advisories

Loading
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. High Unreviewed
CVE-2023-33015 was published Sep 5, 2023
Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard. Moderate Unreviewed
CVE-2023-21667 was published Sep 5, 2023
Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service. High Unreviewed
CVE-2022-40524 was published Sep 5, 2023
Transient DOS in Audio while remapping channel buffer in media codec decoding. High Unreviewed
CVE-2023-28555 was published Aug 8, 2023
Information disclosure in Network Services due to buffer over-read while the device receives DNS... High Unreviewed
CVE-2023-21625 was published Aug 8, 2023
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. High Unreviewed
CVE-2023-28541 was published Jul 4, 2023
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source... High Unreviewed
CVE-2023-21669 was published Jun 6, 2023
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame. High Unreviewed
CVE-2023-21658 was published Jun 6, 2023
Information disclosure due to buffer over-read in Modem while parsing DNS hostname. High Unreviewed
CVE-2022-40505 was published May 2, 2023
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. High Unreviewed
CVE-2022-40503 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while parsing the wms message received... High Unreviewed
CVE-2022-33295 was published Apr 13, 2023
Information disclosure due to buffer overread in Linux sensors Moderate Unreviewed
CVE-2022-33297 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while receiving a IP header with... High Unreviewed
CVE-2022-33291 was published Apr 13, 2023
Information disclosure due to buffer over-read in modem while reading configuration parameters. High Unreviewed
CVE-2022-33258 was published Apr 13, 2023
Information disclosure due to buffer over-read while parsing DNS response packets in Modem. High Unreviewed
CVE-2022-33222 was published Apr 13, 2023
Information disclosure in modem due to improper check of IP type while processing DNS server query High Unreviewed
CVE-2022-25730 was published Apr 13, 2023
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size... High Unreviewed
CVE-2022-33309 was published Mar 10, 2023
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. High Unreviewed
CVE-2022-40512 was published Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame. High Unreviewed
CVE-2022-33271 was published Feb 12, 2023
Information disclosure due to buffer over-read in Modem while using static array to process IPv4... High Unreviewed
CVE-2022-33229 was published Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing... Moderate Unreviewed
CVE-2022-33221 was published Feb 12, 2023
Information disclosure in modem due to buffer over-read while processing response from DNS server High Unreviewed
CVE-2022-25728 was published Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check High Unreviewed
CVE-2022-25732 was published Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received High Unreviewed
CVE-2022-25738 was published Feb 12, 2023
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26160 was published Mar 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database