Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

199 advisories

Loading
Information Disclosure while invoking the mailbox write API when message received from user is... Moderate Unreviewed
CVE-2024-23366 was published Jan 6, 2025
Information disclosure while processing IOCTL call made for releasing a trusted VM process... Moderate Unreviewed
CVE-2024-33061 was published Jan 6, 2025
Information disclosure while invoking callback function of sound model driver from ADSP for every... Moderate Unreviewed
CVE-2024-33067 was published Jan 6, 2025
information disclosure while invoking the mailbox read API. Moderate Unreviewed
CVE-2024-43063 was published Jan 6, 2025
Transient DOS while processing channel information for speaker protection v2 module in ADSP. Moderate Unreviewed
CVE-2023-33090 was published Mar 4, 2024
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol... High Unreviewed
CVE-2023-43539 was published Mar 4, 2024
Information Disclosure while processing IOCTL request in FastRPC. Moderate Unreviewed
CVE-2023-33078 was published Mar 4, 2024
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame. High Unreviewed
CVE-2024-23363 was published Jun 3, 2024
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while... High Unreviewed
CVE-2018-5852 was published Nov 26, 2024
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to... Critical Unreviewed
CVE-2017-17772 was published Nov 26, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26255 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28901 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28900 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28902 was published Apr 9, 2024
Windows USB Print Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26243 was published Apr 9, 2024
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL... High Unreviewed
CVE-2024-45548 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. High Unreviewed
CVE-2024-45546 was published Jan 6, 2025
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Moderate Unreviewed
CVE-2024-45559 was published Jan 6, 2025
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-38172 was published Aug 8, 2023
Windows Kernel Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-36803 was published Sep 12, 2023
Transient DOS while handling PS event when Program Service name length offset value is set to 255. Moderate Unreviewed
CVE-2024-33043 was published Sep 2, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition continuously. High Unreviewed
CVE-2024-33056 was published Dec 2, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36581 was published Oct 10, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49088 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database