Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105 advisories

Loading
Microsoft Windows Admin Center Information Disclosure Vulnerability High Unreviewed
CVE-2024-43475 was published Sep 10, 2024
Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38250 was published Sep 10, 2024
Transient DOS while parsing the multi-link element Control field when common information length... High Unreviewed
CVE-2024-33057 was published Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. High Unreviewed
CVE-2024-33051 was published Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space. High Unreviewed
CVE-2024-33047 was published Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. High Unreviewed
CVE-2024-33048 was published Sep 2, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length... High Unreviewed
CVE-2024-33050 was published Sep 2, 2024
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message... High Unreviewed
CVE-2024-23359 was published Sep 2, 2024
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in... High Unreviewed
CVE-2024-23358 was published Sep 2, 2024
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the... High Unreviewed
CVE-2024-23364 was published Sep 2, 2024
Windows Hyper-V Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38127 was published Aug 13, 2024
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38135 was published Aug 13, 2024
Transient DOS during music playback of ALAC content. High Unreviewed
CVE-2024-21479 was published Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non... High Unreviewed
CVE-2024-33012 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping... High Unreviewed
CVE-2024-33018 was published Aug 5, 2024
Transient DOS while processing TID-to-link mapping IE elements. High Unreviewed
CVE-2024-33020 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping action frame. High Unreviewed
CVE-2024-33019 was published Aug 5, 2024
Transient DOS while parsing probe response and assoc response frame when received frame length is... High Unreviewed
CVE-2024-33026 was published Aug 5, 2024
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the... High Unreviewed
CVE-2024-33015 was published Aug 5, 2024
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. High Unreviewed
CVE-2024-23353 was published Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. High Unreviewed
CVE-2024-33011 was published Aug 5, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame. High Unreviewed
CVE-2024-33014 was published Aug 5, 2024
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. High Unreviewed
CVE-2024-33025 was published Aug 5, 2024
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE... High Unreviewed
CVE-2024-33013 was published Aug 5, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38071 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API