GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
201 advisories
Filter by severity
rPGP Panics on Malformed Untrusted Input
High
CVE-2024-53856
was published
for
pgp
(Rust)
Dec 5, 2024
Open62541 v1.4.6 is has an assertion failure in fuzz_binary_decode, which leads to a crash.
High
Unreviewed
CVE-2024-53429
was published
Dec 3, 2024
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen...
High
Unreviewed
CVE-2024-23385
was published
Nov 4, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via...
High
Unreviewed
CVE-2024-10455
was published
Oct 28, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to...
High
Unreviewed
CVE-2024-20094
was published
Oct 7, 2024
Client queries that trigger serving stale data and that also require lookups in local...
High
Unreviewed
CVE-2024-4076
was published
Jul 23, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache...
High
Unreviewed
CVE-2024-33601
was published
May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment...
High
Unreviewed
CVE-2023-43529
was published
May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS...
High
Unreviewed
CVE-2024-34475
was published
May 5, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an...
High
Unreviewed
CVE-2024-31744
was published
Apr 19, 2024
Transient DOS while processing multiple payload container type with incorrect container length...
High
Unreviewed
CVE-2023-33095
was published
Mar 4, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
High
Unreviewed
CVE-2023-33096
was published
Mar 4, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure...
High
Unreviewed
CVE-2023-5517
was published
Feb 13, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to...
High
Unreviewed
CVE-2024-25445
was published
Feb 9, 2024
Transient DOS while processing 11AZ RTT management action frame received through OTA.
High
Unreviewed
CVE-2023-43523
was published
Feb 6, 2024
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a...
High
Unreviewed
CVE-2023-34194
was published
Dec 13, 2023
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
High
Unreviewed
CVE-2023-33043
was published
Dec 5, 2023
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while...
High
Unreviewed
CVE-2023-33041
was published
Dec 5, 2023
Transient DOS in Data modem while handling TLB control messages from the Network.
High
Unreviewed
CVE-2023-33044
was published
Dec 5, 2023
The ACEManager
component of ALEOS 4.16 and earlier does not
perform input...
High
Unreviewed
CVE-2023-40462
was published
Dec 5, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32844
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32846
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32843
was published
Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to...
High
Unreviewed
CVE-2023-32845
was published
Dec 4, 2023
ProTip!
Advisories are also available from the
GraphQL API