Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,296
Erlang
31
GitHub Actions
21
Go
2,063
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL... High Unreviewed
CVE-2024-45548 was published Jan 6, 2025
Information disclosure while invoking callback function of sound model driver from ADSP for every... Moderate Unreviewed
CVE-2024-33067 was published Jan 6, 2025
Information disclosure while processing IOCTL call made for releasing a trusted VM process... Moderate Unreviewed
CVE-2024-33061 was published Jan 6, 2025
information disclosure while invoking the mailbox read API. Moderate Unreviewed
CVE-2024-43063 was published Jan 6, 2025
Information Disclosure while invoking the mailbox write API when message received from user is... Moderate Unreviewed
CVE-2024-23366 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. High Unreviewed
CVE-2024-45546 was published Jan 6, 2025
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Moderate Unreviewed
CVE-2024-45559 was published Jan 6, 2025
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-38172 was published Aug 8, 2023
Windows Kernel Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-36803 was published Sep 12, 2023
Transient DOS while handling PS event when Program Service name length offset value is set to 255. Moderate Unreviewed
CVE-2024-33043 was published Sep 2, 2024
Memory corruption when allocating and accessing an entry in an SMEM partition continuously. High Unreviewed
CVE-2024-33056 was published Dec 2, 2024
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36581 was published Oct 10, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49088 was published Dec 12, 2024
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver... Moderate Unreviewed
CVE-2024-33037 was published Dec 2, 2024
The researcher is showing that it is possible to leak a small amount of Zabbix Server memory... Low Unreviewed
CVE-2024-42333 was published Nov 27, 2024
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE... High Unreviewed
CVE-2024-33013 was published Aug 5, 2024
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non... High Unreviewed
CVE-2024-33012 was published Aug 5, 2024
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. High Unreviewed
CVE-2024-33011 was published Aug 5, 2024
Transient DOS during music playback of ALAC content. High Unreviewed
CVE-2024-21479 was published Aug 5, 2024
Information disclosure while handling beacon probe frame during scan entry generation in client... Moderate Unreviewed
CVE-2024-21467 was published Aug 5, 2024
Information disclosure while handling beacon or probe response frame in STA. Moderate Unreviewed
CVE-2024-21459 was published Aug 5, 2024
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. High Unreviewed
CVE-2024-23353 was published Aug 5, 2024
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while... High Unreviewed
CVE-2018-5852 was published Nov 26, 2024
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to... Critical Unreviewed
CVE-2017-17772 was published Nov 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database