Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

417 advisories

Loading
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32845 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32844 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32841 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32842 was published Dec 4, 2023
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for... Moderate Unreviewed
CVE-2023-5871 was published Nov 27, 2023
cordova-plugin-fingerprint-aio DoS vulnerability Moderate
CVE-2021-43849 was published for cordova-plugin-fingerprint-aio (npm) Nov 2, 2023
0xWise64
A vulnerability was found in Avahi. A reachable assertion exists in the... Moderate Unreviewed
CVE-2023-38473 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()... Moderate Unreviewed
CVE-2023-38470 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()... Moderate Unreviewed
CVE-2023-38472 was published Nov 2, 2023
A vulnerability was found in Avahi, where a reachable assertion exists in... Moderate Unreviewed
CVE-2023-38469 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function. Moderate Unreviewed
CVE-2023-38471 was published Nov 2, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate... High Unreviewed
CVE-2023-4236 was published Sep 20, 2023
Transient DOS in Modem while processing invalid System Information Block 1. High Unreviewed
CVE-2023-21646 was published Sep 5, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function... Moderate Unreviewed
CVE-2022-35205 was published Aug 22, 2023
A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2022-37052 was published Aug 22, 2023
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2021-46179 was published Aug 22, 2023
An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead... Moderate Unreviewed
CVE-2022-38349 was published Aug 22, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of... Moderate Unreviewed
CVE-2022-37051 was published Aug 22, 2023
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by... Moderate Unreviewed
CVE-2021-31294 was published Jul 16, 2023
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-36840 was published Jul 14, 2023
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook... Moderate Unreviewed
CVE-2023-37836 was published Jul 14, 2023
ProTip! Advisories are also available from the GraphQL API