Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

242 advisories

Loading
Reachable Assertion vulnerability in Open5GS up to version 2.7.5 allows attackers with... High Unreviewed
CVE-2025-41067 was published Oct 27, 2025
Reachable Assertion vulnerability in Open5GS up to version 2.7.5 allows attackers with... High Unreviewed
CVE-2025-41068 was published Oct 27, 2025
quic-go: Panic occurs when queuing undecryptable packets after handshake completion High
CVE-2025-59530 was published for github.com/quic-go/quic-go (Go) Oct 10, 2025
rsukhodolskyi
Credited to rsukhodolskyi
Transient DOS while processing an ANQP message. High Unreviewed
CVE-2025-27066 was published Aug 6, 2025
Transient DOS while creating NDP instance. High Unreviewed
CVE-2025-27073 was published Aug 6, 2025
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE... High Unreviewed
CVE-2025-21452 was published Aug 6, 2025
An issue in FlashMQ v1.14.0 allows attackers to cause an assertion failure via sending a crafted... High Unreviewed
CVE-2024-42645 was published Jul 29, 2025
FlashMQ v1.14.0 was discovered to contain an assertion failure in the function PublishCopyFactory... High Unreviewed
CVE-2024-42644 was published Jul 29, 2025
A denial of service vulnerability exists in the Distributed Transaction Commit/Abort Operation... High Unreviewed
CVE-2025-46354 was published Jul 22, 2025
A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a... High Unreviewed
CVE-2025-36512 was published Jul 22, 2025
If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale... High Unreviewed
CVE-2025-40777 was published Jul 16, 2025
A Reachable Assertion vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-52964 was published Jul 11, 2025
In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2... High Unreviewed
CVE-2025-49630 was published Jul 10, 2025
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability... High Unreviewed
CVE-2025-29339 was published Apr 22, 2025
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a... High Unreviewed
CVE-2024-56921 was published Feb 3, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2024-57519 was published Jan 29, 2025
A reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows... High Unreviewed
CVE-2024-24429 was published Jan 22, 2025
A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24430 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37019 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet... High Unreviewed
CVE-2023-37023 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37020 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37018 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2024-34235 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37017 was published Jan 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database