Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

242 advisories

Loading
A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion... High Unreviewed
CVE-2023-5679 was published Feb 13, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure... High Unreviewed
CVE-2023-5517 was published Feb 13, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to... High Unreviewed
CVE-2024-25445 was published Feb 9, 2024
Transient DOS while processing 11AZ RTT management action frame received through OTA. High Unreviewed
CVE-2023-43523 was published Feb 6, 2024
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a... High Unreviewed
CVE-2023-34194 was published Dec 13, 2023
Transient DOS in Data modem while handling TLB control messages from the Network. High Unreviewed
CVE-2023-33044 was published Dec 5, 2023
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP. High Unreviewed
CVE-2023-33043 was published Dec 5, 2023
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while... High Unreviewed
CVE-2023-33041 was published Dec 5, 2023
The ACEManager component of ALEOS 4.16 and earlier does not perform input sanitization during... High Unreviewed
CVE-2023-40462 was published Dec 5, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32844 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32846 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32845 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32843 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32841 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32842 was published Dec 4, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate... High Unreviewed
CVE-2023-4236 was published Sep 20, 2023
Transient DOS in Modem while processing invalid System Information Block 1. High Unreviewed
CVE-2023-21646 was published Sep 5, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
gRPC Reachable Assertion issue High
CVE-2023-1428 was published for grpc (RubyGems) Jul 6, 2023
jonasfj tal-sealsecurity
Credited to jonasfj and tal-sealsecurity
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34867 was published Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34868 was published Jun 14, 2023
Denial of Service via reachable assertion High
CVE-2022-24777 was published for github.com/grpc/grpc-swift (Swift) Jun 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database