Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

189 advisories

Loading
Transient DOS while handling PS event when Program Service name length offset value is set to 255. Moderate Unreviewed
CVE-2024-33043 was published Sep 2, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition continuously. High Unreviewed
CVE-2024-33056 was published Dec 2, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36581 was published Oct 10, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49088 was published Dec 12, 2024
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver... Moderate Unreviewed
CVE-2024-33037 was published Dec 2, 2024
The researcher is showing that it is possible to leak a small amount of Zabbix Server memory... Low Unreviewed
CVE-2024-42333 was published Nov 27, 2024
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE... High Unreviewed
CVE-2024-33013 was published Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non... High Unreviewed
CVE-2024-33012 was published Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. High Unreviewed
CVE-2024-33011 was published Aug 5, 2024
Information disclosure while handling beacon probe frame during scan entry generation in client... Moderate Unreviewed
CVE-2024-21467 was published Aug 5, 2024
Transient DOS during music playback of ALAC content. High Unreviewed
CVE-2024-21479 was published Aug 5, 2024
Information disclosure while handling beacon or probe response frame in STA. Moderate Unreviewed
CVE-2024-21459 was published Aug 5, 2024
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. High Unreviewed
CVE-2024-23353 was published Aug 5, 2024
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while... High Unreviewed
CVE-2018-5852 was published Nov 26, 2024
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to... Critical Unreviewed
CVE-2017-17772 was published Nov 26, 2024
Transient DOS while parsing probe response and assoc response frame when received frame length is... High Unreviewed
CVE-2024-33026 was published Aug 5, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame. High Unreviewed
CVE-2024-33014 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping action frame. High Unreviewed
CVE-2024-33019 was published Aug 5, 2024
Transient DOS while processing TID-to-link mapping IE elements. High Unreviewed
CVE-2024-33020 was published Aug 5, 2024
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. High Unreviewed
CVE-2024-33025 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping... High Unreviewed
CVE-2024-33018 was published Aug 5, 2024
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the... High Unreviewed
CVE-2024-33015 was published Aug 5, 2024
Microsoft Office Graphics Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49031 was published Nov 12, 2024
A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated... Moderate Unreviewed
CVE-2024-9843 was published Nov 12, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31081 was published Apr 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database