Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,135
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

223 advisories

Loading
Transient DOS while processing an ANQP message. High Unreviewed
CVE-2025-27066 was published Aug 6, 2025
Transient DOS while creating NDP instance. High Unreviewed
CVE-2025-27073 was published Aug 6, 2025
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE... High Unreviewed
CVE-2025-21452 was published Aug 6, 2025
An issue in FlashMQ v1.14.0 allows attackers to cause an assertion failure via sending a crafted... High Unreviewed
CVE-2024-42645 was published Jul 29, 2025
FlashMQ v1.14.0 was discovered to contain an assertion failure in the function PublishCopyFactory... High Unreviewed
CVE-2024-42644 was published Jul 29, 2025
A denial of service vulnerability exists in the Distributed Transaction Commit/Abort Operation... High Unreviewed
CVE-2025-46354 was published Jul 22, 2025
A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a... High Unreviewed
CVE-2025-36512 was published Jul 22, 2025
If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale... High Unreviewed
CVE-2025-40777 was published Jul 16, 2025
A Reachable Assertion vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-52964 was published Jul 11, 2025
In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2... High Unreviewed
CVE-2025-49630 was published Jul 10, 2025
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability... High Unreviewed
CVE-2025-29339 was published Apr 22, 2025
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a... High Unreviewed
CVE-2024-56921 was published Feb 3, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2024-57519 was published Jan 29, 2025
A reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows... High Unreviewed
CVE-2024-24429 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2024-34235 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37015 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37016 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37018 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37017 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37019 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37020 was published Jan 22, 2025
Open5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37021 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet... High Unreviewed
CVE-2023-37023 was published Jan 22, 2025
A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24430 was published Jan 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database