Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

189 advisories

Loading
vLLM denial of service vulnerability High
CVE-2024-8768 was published for vllm (pip) Sep 17, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure... High Unreviewed
CVE-2023-5517 was published Feb 13, 2024
Client queries that trigger serving stale data and that also require lookups in local... High Unreviewed
CVE-2024-4076 was published Jul 23, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache... High Unreviewed
CVE-2024-33601 was published May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS... High Unreviewed
CVE-2024-34475 was published May 5, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an... High Unreviewed
CVE-2024-31744 was published Apr 19, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment... High Unreviewed
CVE-2023-43529 was published May 6, 2024
Transient DOS while processing multiple payload container type with incorrect container length... High Unreviewed
CVE-2023-33095 was published Mar 4, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. High Unreviewed
CVE-2023-33096 was published Mar 4, 2024
Transient DOS in Modem while processing invalid System Information Block 1. High Unreviewed
CVE-2023-21646 was published Sep 5, 2023
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication... High Unreviewed
CVE-2022-40504 was published May 2, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34867 was published Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34868 was published Jun 14, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from... High Unreviewed
CVE-2022-40538 was published Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration. High Unreviewed
CVE-2022-33251 was published Jun 6, 2023
Assertion occurs while processing Reconfiguration message due to improper validation High Unreviewed
CVE-2022-22060 was published Jun 6, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be... High Unreviewed
CVE-2023-23759 was published May 19, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross... High Unreviewed
CVE-2022-40508 was published May 2, 2023
Transient DOS due to reachable assertion in Modem during OSI decode scheduling. High Unreviewed
CVE-2022-34144 was published May 2, 2023
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;... High Unreviewed
CVE-2018-5735 was published May 24, 2022
A defect in code added to support QNAME minimization can cause named to exit with an assertion... High Unreviewed
CVE-2019-6476 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API