GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
189 advisories
Filter by severity
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
Moderate
Unreviewed
CVE-2024-33043
was published
Sep 2, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
High
Unreviewed
CVE-2024-33056
was published
Dec 2, 2024
Microsoft Message Queuing Denial of Service Vulnerability
High
Unreviewed
CVE-2023-36581
was published
Oct 10, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49088
was published
Dec 12, 2024
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver...
Moderate
Unreviewed
CVE-2024-33037
was published
Dec 2, 2024
The researcher is showing that it is possible to leak a small amount of Zabbix Server memory...
Low
Unreviewed
CVE-2024-42333
was published
Nov 27, 2024
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE...
High
Unreviewed
CVE-2024-33013
was published
Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non...
High
Unreviewed
CVE-2024-33012
was published
Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
High
Unreviewed
CVE-2024-33011
was published
Aug 5, 2024
Transient DOS during music playback of ALAC content.
High
Unreviewed
CVE-2024-21479
was published
Aug 5, 2024
Information disclosure while handling beacon probe frame during scan entry generation in client...
Moderate
Unreviewed
CVE-2024-21467
was published
Aug 5, 2024
Information disclosure while handling beacon or probe response frame in STA.
Moderate
Unreviewed
CVE-2024-21459
was published
Aug 5, 2024
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
High
Unreviewed
CVE-2024-23353
was published
Aug 5, 2024
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while...
High
Unreviewed
CVE-2018-5852
was published
Nov 26, 2024
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to...
Critical
Unreviewed
CVE-2017-17772
was published
Nov 26, 2024
Transient DOS while parsing probe response and assoc response frame when received frame length is...
High
Unreviewed
CVE-2024-33026
was published
Aug 5, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame.
High
Unreviewed
CVE-2024-33014
was published
Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping action frame.
High
Unreviewed
CVE-2024-33019
was published
Aug 5, 2024
Transient DOS while processing TID-to-link mapping IE elements.
High
Unreviewed
CVE-2024-33020
was published
Aug 5, 2024
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
High
Unreviewed
CVE-2024-33025
was published
Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping...
High
Unreviewed
CVE-2024-33018
was published
Aug 5, 2024
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the...
High
Unreviewed
CVE-2024-33015
was published
Aug 5, 2024
Microsoft Office Graphics Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49031
was published
Nov 12, 2024
A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated...
Moderate
Unreviewed
CVE-2024-9843
was published
Nov 12, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's...
High
Unreviewed
CVE-2024-31081
was published
Apr 4, 2024
ProTip!
Advisories are also available from the
GraphQL API