Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

140 advisories

Loading
Information disclosure while handling SA query action frame. Moderate Unreviewed
CVE-2024-21458 was published Jul 1, 2024
Memory corruption while processing key blob passed by the user. High Unreviewed
CVE-2024-21465 was published Jul 1, 2024
Transient DOS while loading the TA ELF file. High Unreviewed
CVE-2024-21462 was published Jul 1, 2024
Information Disclosure while parsing beacon frame in STA. Moderate Unreviewed
CVE-2024-21456 was published Jul 1, 2024
INformation disclosure while handling Multi-link IE in beacon frame. Moderate Unreviewed
CVE-2024-21457 was published Jul 1, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30069 was published Jun 11, 2024
Information disclosure while handling T2LM Action Frame in WLAN Host. Moderate Unreviewed
CVE-2023-43537 was published Jun 3, 2024
Information disclosure in Video while parsing mp2 clip with invalid section length. High Unreviewed
CVE-2023-43555 was published Jun 3, 2024
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame. High Unreviewed
CVE-2024-23363 was published Jun 3, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31080 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31081 was published Apr 4, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30039 was published May 14, 2024
StringIO buffer overread vulnerability High
CVE-2024-27280 was published for stringio (RubyGems) Mar 25, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31082 was published Apr 4, 2024
Information disclosure while parsing dts header atom in Video. Moderate Unreviewed
CVE-2023-43527 was published May 6, 2024
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. High Unreviewed
CVE-2024-21477 was published May 6, 2024
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream... Moderate Unreviewed
CVE-2023-43528 was published May 6, 2024
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802... High Unreviewed
CVE-2023-43533 was published Feb 6, 2024
Transient DOS in WLAN Firmware while parsing a BTM request. High Unreviewed
CVE-2023-33062 was published Jan 2, 2024
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast. High Unreviewed
CVE-2023-33081 was published Dec 5, 2023
Information disclosure in WLAN HAL while handling the WMI state info command. Moderate Unreviewed
CVE-2023-28566 was published Nov 14, 2023
Transient DOS in WLAN Firmware while parsing rsn ies. High Unreviewed
CVE-2023-33027 was published Oct 3, 2023
Transient DOS in WLAN Firmware while parsing FT Information Elements. High Unreviewed
CVE-2023-21660 was published Jun 6, 2023
Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. High Unreviewed
CVE-2023-33116 was published Jan 2, 2024
Transient DOS while parse fils IE with length equal to 1. High Unreviewed
CVE-2023-43536 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API