GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,331
Erlang
31
GitHub Actions
21
Go
2,093
Maven
5,000+
npm
3,756
NuGet
678
pip
3,443
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
70 advisories
Filter by severity
Information disclosure in Trusted Execution Environment due to buffer over-read while processing...
Moderate
Unreviewed
CVE-2022-33221
was published
Feb 12, 2023
Information disclosure due to buffer overread in Linux sensors
Moderate
Unreviewed
CVE-2022-33297
was published
Apr 13, 2023
Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
Moderate
Unreviewed
CVE-2023-21667
was published
Sep 5, 2023
Information disclosure in WLAN HAL when reception status handler is called.
Moderate
Unreviewed
CVE-2023-28568
was published
Nov 14, 2023
Information disclosure in WLAN HAL while handling command through WMI interfaces.
Moderate
Unreviewed
CVE-2023-28569
was published
Nov 14, 2023
Information Disclosure in WLAN Host when processing WMI event command.
Moderate
Unreviewed
CVE-2023-28553
was published
Nov 14, 2023
Information disclosure in IOE Firmware while handling WMI command.
Moderate
Unreviewed
CVE-2023-28563
was published
Nov 14, 2023
Information disclosure in Audio while accessing AVCS services from ADSP payload.
Moderate
Unreviewed
CVE-2023-33065
was published
Feb 6, 2024
Information disclosure in Automotive multimedia due to buffer over-read.
Moderate
Unreviewed
CVE-2022-33220
was published
Sep 5, 2023
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
Moderate
Unreviewed
CVE-2023-28554
was published
Nov 14, 2023
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming...
Moderate
Unreviewed
CVE-2023-28571
was published
Oct 3, 2023
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report...
Moderate
Unreviewed
CVE-2022-33273
was published
May 2, 2023
Transient DOS in Audio when invoking callback function of ASM driver.
Moderate
Unreviewed
CVE-2023-33064
was published
Feb 6, 2024
Information disclosure in WLAN HAL while handling the WMI state info command.
Moderate
Unreviewed
CVE-2023-28566
was published
Nov 14, 2023
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30039
was published
May 14, 2024
Information disclosure while handling T2LM Action Frame in WLAN Host.
Moderate
Unreviewed
CVE-2023-43537
was published
Jun 3, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30069
was published
Jun 11, 2024
INformation disclosure while handling Multi-link IE in beacon frame.
Moderate
Unreviewed
CVE-2024-21457
was published
Jul 1, 2024
Information disclosure while handling SA query action frame.
Moderate
Unreviewed
CVE-2024-21458
was published
Jul 1, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30071
was published
Jul 9, 2024
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is...
Moderate
Unreviewed
CVE-2023-45919
was published
Mar 27, 2024
Information Disclosure while parsing beacon frame in STA.
Moderate
Unreviewed
CVE-2024-21456
was published
Jul 1, 2024
Windows Resilient File System (ReFS) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-43500
was published
Oct 8, 2024
Databento Binary Encoding (DBN) has a heap buffer overflow using c_chars_to_str function
Moderate
GHSA-pfr9-2p92-qrhq
was published
for
dbn
(Rust)
Oct 9, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43595
was published
Oct 18, 2024
ProTip!
Advisories are also available from the
GraphQL API