GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
170 advisories
Filter by severity
A flaw was found in freeimage library. Processing a crafted image can cause a buffer over-read of...
High
Unreviewed
CVE-2024-9029
was published
Sep 27, 2024
Microsoft Windows Admin Center Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-43475
was published
Sep 10, 2024
Windows Graphics Component Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38250
was published
Sep 10, 2024
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
Moderate
Unreviewed
CVE-2024-33043
was published
Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
High
Unreviewed
CVE-2024-33048
was published
Sep 2, 2024
Transient DOS while parsing the multi-link element Control field when common information length...
High
Unreviewed
CVE-2024-33057
was published
Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
High
Unreviewed
CVE-2024-33051
was published
Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space.
High
Unreviewed
CVE-2024-33047
was published
Sep 2, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length...
High
Unreviewed
CVE-2024-33050
was published
Sep 2, 2024
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in...
High
Unreviewed
CVE-2024-23358
was published
Sep 2, 2024
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the...
High
Unreviewed
CVE-2024-23364
was published
Sep 2, 2024
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message...
High
Unreviewed
CVE-2024-23359
was published
Sep 2, 2024
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module, which might...
Moderate
Unreviewed
CVE-2024-7347
was published
Aug 14, 2024
Windows Hyper-V Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38127
was published
Aug 13, 2024
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38135
was published
Aug 13, 2024
Information disclosure while handling beacon or probe response frame in STA.
Moderate
Unreviewed
CVE-2024-21459
was published
Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
High
Unreviewed
CVE-2024-33011
was published
Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping action frame.
High
Unreviewed
CVE-2024-33019
was published
Aug 5, 2024
Transient DOS during music playback of ALAC content.
High
Unreviewed
CVE-2024-21479
was published
Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non...
High
Unreviewed
CVE-2024-33012
was published
Aug 5, 2024
Transient DOS while processing TID-to-link mapping IE elements.
High
Unreviewed
CVE-2024-33020
was published
Aug 5, 2024
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE...
High
Unreviewed
CVE-2024-33013
was published
Aug 5, 2024
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the...
High
Unreviewed
CVE-2024-33015
was published
Aug 5, 2024
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
High
Unreviewed
CVE-2024-33025
was published
Aug 5, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame.
High
Unreviewed
CVE-2024-33014
was published
Aug 5, 2024
ProTip!
Advisories are also available from the
GraphQL API