GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
192 advisories
Filter by severity
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line...
High
Unreviewed
CVE-2023-24848
was published
Oct 3, 2023
Transient DOS in WLAN Firmware while parsing rsn ies.
High
Unreviewed
CVE-2023-33027
was published
Oct 3, 2023
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Critical
Unreviewed
CVE-2023-22385
was published
Oct 3, 2023
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
High
Unreviewed
CVE-2023-24849
was published
Oct 3, 2023
Transient DOS in WLAN Firmware while parsing a NAN management frame.
High
Unreviewed
CVE-2023-33026
was published
Oct 3, 2023
A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43572
was published
Nov 9, 2023
A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo...
Moderate
Unreviewed
CVE-2023-43574
was published
Nov 9, 2023
A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop...
Moderate
Unreviewed
CVE-2023-43568
was published
Nov 9, 2023
Information Disclosure in WLAN Host when processing WMI event command.
Moderate
Unreviewed
CVE-2023-28553
was published
Nov 14, 2023
Information disclosure in WLAN HAL while handling the WMI state info command.
Moderate
Unreviewed
CVE-2023-28566
was published
Nov 14, 2023
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
Moderate
Unreviewed
CVE-2023-28554
was published
Nov 14, 2023
Information disclosure in WLAN HAL when reception status handler is called.
Moderate
Unreviewed
CVE-2023-28568
was published
Nov 14, 2023
Information disclosure in IOE Firmware while handling WMI command.
Moderate
Unreviewed
CVE-2023-28563
was published
Nov 14, 2023
Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.
High
Unreviewed
CVE-2023-28572
was published
Nov 14, 2023
Information disclosure in WLAN HAL while handling command through WMI interfaces.
Moderate
Unreviewed
CVE-2023-28569
was published
Nov 14, 2023
Transient DOS in WLAN Firmware while parsing t2lm buffers.
High
Unreviewed
CVE-2023-33048
was published
Nov 14, 2023
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.
High
Unreviewed
CVE-2023-33061
was published
Nov 14, 2023
Transient DOS in WLAN Firmware while parsing no-inherit IES.
High
Unreviewed
CVE-2023-33047
was published
Nov 14, 2023
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
High
Unreviewed
CVE-2023-33098
was published
Dec 5, 2023
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response...
High
Unreviewed
CVE-2023-33080
was published
Dec 5, 2023
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
High
Unreviewed
CVE-2023-33081
was published
Dec 5, 2023
Transient DOS in WLAN Firmware while processing a FTMR frame.
High
Unreviewed
CVE-2023-33097
was published
Dec 5, 2023
Transient DOS in Data Modem during DTLS handshake.
High
Unreviewed
CVE-2023-33040
was published
Jan 2, 2024
Transient DOS in WLAN Firmware while parsing a BTM request.
High
Unreviewed
CVE-2023-33062
was published
Jan 2, 2024
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
High
Unreviewed
CVE-2023-33112
was published
Jan 2, 2024
ProTip!
Advisories are also available from the
GraphQL API