GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,012
Maven
5,000+
npm
3,720
NuGet
662
pip
3,393
Pub
11
RubyGems
885
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
192 advisories
Filter by severity
Transient DOS while parsing GATT service data when the total amount of memory that is required by...
High
Unreviewed
CVE-2023-43512
was published
Jan 2, 2024
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
High
Unreviewed
CVE-2023-33112
was published
Jan 2, 2024
Transient DOS in Core when DDR memory check is called while DDR is not initialized.
High
Unreviewed
CVE-2023-33060
was published
Feb 6, 2024
Transient DOS in Audio when invoking callback function of ASM driver.
Moderate
Unreviewed
CVE-2023-33064
was published
Feb 6, 2024
Information disclosure in Audio while accessing AVCS services from ADSP payload.
Moderate
Unreviewed
CVE-2023-33065
was published
Feb 6, 2024
Information disclosure in Modem while processing SIB5.
High
Unreviewed
CVE-2023-33058
was published
Feb 6, 2024
Transient DOS while parse fils IE with length equal to 1.
High
Unreviewed
CVE-2023-43536
was published
Feb 6, 2024
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802...
High
Unreviewed
CVE-2023-43533
was published
Feb 6, 2024
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote...
High
Unreviewed
CVE-2024-20290
was published
Feb 7, 2024
Windows Kernel Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-21340
was published
Feb 13, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston...
Moderate
Unreviewed
CVE-2023-39540
was published
Feb 20, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston...
Moderate
Unreviewed
CVE-2023-39541
was published
Feb 20, 2024
BACnet Stack before 1.3.2 has a decode function APDU buffer over-read in...
Critical
Unreviewed
CVE-2023-51773
was published
Feb 29, 2024
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol...
High
Unreviewed
CVE-2023-43539
was published
Mar 4, 2024
Transient DOS while processing channel information for speaker protection v2 module in ADSP.
Moderate
Unreviewed
CVE-2023-33090
was published
Mar 4, 2024
Information Disclosure while processing IOCTL request in FastRPC.
Moderate
Unreviewed
CVE-2023-33078
was published
Mar 4, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26160
was published
Mar 12, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26176
was published
Mar 12, 2024
StringIO buffer overread vulnerability
Critical
CVE-2024-27280
was published
for
stringio
(RubyGems)
Mar 25, 2024
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is...
Moderate
Unreviewed
CVE-2023-45919
was published
Mar 27, 2024
Memory corruption while processing buffer initialization, when trusted report for certain report...
High
Unreviewed
CVE-2023-33115
was published
Apr 1, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's...
High
Unreviewed
CVE-2024-31081
was published
Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's...
High
Unreviewed
CVE-2024-31080
was published
Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's...
High
Unreviewed
CVE-2024-31082
was published
Apr 4, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26255
was published
Apr 9, 2024
ProTip!
Advisories are also available from the
GraphQL API