Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

513 advisories

Loading
A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2022-37052 was published Aug 22, 2023
An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead... Moderate Unreviewed
CVE-2022-38349 was published Aug 22, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of... Moderate Unreviewed
CVE-2022-37051 was published Aug 22, 2023
Transient DOS in Modem while processing invalid System Information Block 1. High Unreviewed
CVE-2023-21646 was published Sep 5, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate... High Unreviewed
CVE-2023-4236 was published Sep 20, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()... Moderate Unreviewed
CVE-2023-38472 was published Nov 2, 2023
A vulnerability was found in Avahi, where a reachable assertion exists in... Moderate Unreviewed
CVE-2023-38469 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function. Moderate Unreviewed
CVE-2023-38471 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()... Moderate Unreviewed
CVE-2023-38470 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the... Moderate Unreviewed
CVE-2023-38473 was published Nov 2, 2023
cordova-plugin-fingerprint-aio DoS vulnerability Moderate
CVE-2021-43849 was published for cordova-plugin-fingerprint-aio (npm) Nov 2, 2023
0xWise64
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for... Moderate Unreviewed
CVE-2023-5871 was published Nov 27, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32841 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32842 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32843 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32845 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32846 was published Dec 4, 2023
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to... High Unreviewed
CVE-2023-32844 was published Dec 4, 2023
The ACEManager component of ALEOS 4.16 and earlier does not perform input sanitization during... High Unreviewed
CVE-2023-40462 was published Dec 5, 2023
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP. High Unreviewed
CVE-2023-33043 was published Dec 5, 2023
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while... High Unreviewed
CVE-2023-33041 was published Dec 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database