Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

285 advisories

Loading
Transient DOS may occur while parsing extended IE in beacon. High Unreviewed
CVE-2025-21435 was published Apr 7, 2025
Information disclosure may occur during a video call if a device resets due to a non-conforming... High Unreviewed
CVE-2024-45552 was published Apr 7, 2025
A flaw was found in libsoup. A vulnerability in the sniff_unknown() function may lead to heap... Moderate Unreviewed
CVE-2025-32052 was published Apr 3, 2025
A flaw was found in libsoup. A vulnerability in sniff_feed_or_html() and skip_insignificant_space... Moderate Unreviewed
CVE-2025-32053 was published Apr 3, 2025
Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. Moderate Unreviewed
CVE-2025-24992 was published Mar 11, 2025
A buffer overread can occur in the CPC application when operating in full duplex SPI upon... Low Unreviewed
CVE-2024-12975 was published Mar 7, 2025
Transient DOS during hypervisor virtual I/O operation in a virtual machine. Moderate Unreviewed
CVE-2024-43056 was published Mar 3, 2025
libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in... Moderate Unreviewed
CVE-2024-57970 was published Feb 16, 2025
A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running... High Unreviewed
CVE-2024-12011 was published Feb 13, 2025
Memory corruption during management frame processing due to mismatch in T2LM info element. High Unreviewed
CVE-2024-49839 was published Feb 3, 2025
Memory corruption while handling IOCTL call from user-space to set latency level. High Unreviewed
CVE-2024-45561 was published Feb 3, 2025
Information disclosure while parsing the OCI IE with invalid length. High Unreviewed
CVE-2024-49838 was published Feb 3, 2025
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in... High Unreviewed
CVE-2024-38404 was published Feb 3, 2025
Information disclosure while processing information on firmware image during core initialization. Moderate Unreviewed
CVE-2024-38414 was published Feb 3, 2025
Information disclosure while processing IO control commands. Moderate Unreviewed
CVE-2024-38417 was published Feb 3, 2025
Information disclosure during audio playback. Moderate Unreviewed
CVE-2024-38416 was published Feb 3, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21277 was published Jan 14, 2025
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21271 was published Jan 14, 2025
Information disclosure while processing IOCTL call made for releasing a trusted VM process... Moderate Unreviewed
CVE-2024-33061 was published Jan 6, 2025
Information disclosure while invoking callback function of sound model driver from ADSP for every... Moderate Unreviewed
CVE-2024-33067 was published Jan 6, 2025
information disclosure while invoking the mailbox read API. Moderate Unreviewed
CVE-2024-43063 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. High Unreviewed
CVE-2024-45546 was published Jan 6, 2025
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Moderate Unreviewed
CVE-2024-45559 was published Jan 6, 2025
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL... High Unreviewed
CVE-2024-45548 was published Jan 6, 2025
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database