Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

174 advisories

Loading
Transient DOS during music playback of ALAC content. High Unreviewed
CVE-2024-21479 was published Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non... High Unreviewed
CVE-2024-33012 was published Aug 5, 2024
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping... High Unreviewed
CVE-2024-33018 was published Aug 5, 2024
Information disclosure while handling beacon or probe response frame in STA. Moderate Unreviewed
CVE-2024-21459 was published Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. High Unreviewed
CVE-2024-33011 was published Aug 5, 2024
StringIO buffer overread vulnerability Critical
CVE-2024-27280 was published for stringio (RubyGems) Mar 25, 2024
Windows Hyper-V Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38127 was published Aug 13, 2024
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38135 was published Aug 13, 2024
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module, which might... Moderate Unreviewed
CVE-2024-7347 was published Aug 14, 2024
Information Disclosure while parsing beacon frame in STA. Moderate Unreviewed
CVE-2024-21456 was published Jul 1, 2024
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in... High Unreviewed
CVE-2024-23358 was published Sep 2, 2024
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message... High Unreviewed
CVE-2024-23359 was published Sep 2, 2024
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the... High Unreviewed
CVE-2024-23364 was published Sep 2, 2024
Transient DOS while handling PS event when Program Service name length offset value is set to 255. Moderate Unreviewed
CVE-2024-33043 was published Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space. High Unreviewed
CVE-2024-33047 was published Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. High Unreviewed
CVE-2024-33048 was published Sep 2, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length... High Unreviewed
CVE-2024-33050 was published Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. High Unreviewed
CVE-2024-33051 was published Sep 2, 2024
Transient DOS while parsing the multi-link element Control field when common information length... High Unreviewed
CVE-2024-33057 was published Sep 2, 2024
Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38250 was published Sep 10, 2024
Microsoft Windows Admin Center Information Disclosure Vulnerability High Unreviewed
CVE-2024-43475 was published Sep 10, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31081 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31080 was published Apr 4, 2024
A flaw was found in freeimage library. Processing a crafted image can cause a buffer over-read of... High Unreviewed
CVE-2024-9029 was published Sep 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database