GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,154
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
653
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
184 advisories
Filter by severity
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via...
High
Unreviewed
CVE-2024-10455
was published
Oct 28, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to...
High
Unreviewed
CVE-2024-20094
was published
Oct 7, 2024
In wlan firmware, there is a possible firmware assertion due to improper input handling. This...
High
Unreviewed
CVE-2023-32820
was published
Oct 2, 2023
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure...
High
Unreviewed
CVE-2023-5517
was published
Feb 13, 2024
Client queries that trigger serving stale data and that also require lookups in local...
High
Unreviewed
CVE-2024-4076
was published
Jul 23, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache...
High
Unreviewed
CVE-2024-33601
was published
May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS...
High
Unreviewed
CVE-2024-34475
was published
May 5, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an...
High
Unreviewed
CVE-2024-31744
was published
Apr 19, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment...
High
Unreviewed
CVE-2023-43529
was published
May 6, 2024
Transient DOS while processing multiple payload container type with incorrect container length...
High
Unreviewed
CVE-2023-33095
was published
Mar 4, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
High
Unreviewed
CVE-2023-33096
was published
Mar 4, 2024
Transient DOS in Modem while processing invalid System Information Block 1.
High
Unreviewed
CVE-2023-21646
was published
Sep 5, 2023
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication...
High
Unreviewed
CVE-2022-40504
was published
May 2, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks...
High
Unreviewed
CVE-2023-44175
was published
Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell.
High
Unreviewed
CVE-2023-24843
was published
Oct 3, 2023
Transient DOS in Modem while processing RRC reconfiguration message.
High
Unreviewed
CVE-2023-21653
was published
Sep 5, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
High
Unreviewed
CVE-2023-34867
was published
Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
High
Unreviewed
CVE-2023-34868
was published
Jun 14, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from...
High
Unreviewed
CVE-2022-40538
was published
Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
High
Unreviewed
CVE-2022-33251
was published
Jun 6, 2023
Assertion occurs while processing Reconfiguration message due to improper validation
High
Unreviewed
CVE-2022-22060
was published
Jun 6, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be...
High
Unreviewed
CVE-2023-23759
was published
May 19, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross...
High
Unreviewed
CVE-2022-40508
was published
May 2, 2023
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
High
Unreviewed
CVE-2022-34144
was published
May 2, 2023
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;...
High
Unreviewed
CVE-2018-5735
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API