Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

182 advisories

Loading
Denial of service in modem due to reachable assertion while processing reconfiguration message in... High Unreviewed
CVE-2022-25702 was published Dec 13, 2022
Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and... High Unreviewed
CVE-2022-25691 was published Dec 13, 2022
Denial of service in Modem due to reachable assertion while processing the common config... High Unreviewed
CVE-2022-25692 was published Dec 13, 2022
Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid... High Unreviewed
CVE-2022-25672 was published Dec 13, 2022
Denial of service in Modem due to reachable assertion in Snapdragon Mobile High Unreviewed
CVE-2022-25689 was published Dec 13, 2022
Denial of service in MODEM due to reachable assertion in Snapdragon Mobile High Unreviewed
CVE-2022-25671 was published Nov 15, 2022
In Modem 4G RRC, there is a possible system crash due to improper input validation. This could... High Unreviewed
CVE-2022-26446 was published Nov 9, 2022
The assertion `stmt->Dbc->FirstStmt' failed in MonetDB Database Server v11.43.13. High Unreviewed
CVE-2022-34967 was published Aug 4, 2022
MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() =... High Unreviewed
CVE-2022-32082 was published Jul 2, 2022
There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int,... High Unreviewed
CVE-2022-33024 was published Jun 24, 2022
Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in... High Unreviewed
CVE-2021-30340 was published Jun 15, 2022
Possible assertion due to improper validation of rank restriction field in Snapdragon Auto,... High Unreviewed
CVE-2021-35073 was published Jun 15, 2022
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a. High Unreviewed
CVE-2022-31651 was published May 26, 2022
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be... High Unreviewed
CVE-2020-25709 was published May 24, 2022
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be... High Unreviewed
CVE-2020-20178 was published May 24, 2022
Possible denial of service scenario due to improper input validation of received NAS OTA message... High Unreviewed
CVE-2021-1982 was published May 24, 2022
A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure... High Unreviewed
CVE-2021-33600 was published May 24, 2022
Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-1971 was published May 24, 2022
Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature... High Unreviewed
CVE-2021-38385 was published May 24, 2022
libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase:... High Unreviewed
CVE-2021-36691 was published May 24, 2022
Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in... High Unreviewed
CVE-2021-40083 was published May 24, 2022
A denial of service vulnerability exists in the ASDU message processing functionality of MZ... High Unreviewed
CVE-2021-21778 was published May 24, 2022
In BIND 9.16.19, 9.17.16. Also, version 9.16.19-S1 of BIND Supported Preview Edition When a... High Unreviewed
CVE-2021-25218 was published May 24, 2022
FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion... High Unreviewed
CVE-2021-38291 was published May 24, 2022
A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2021-1422 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API