Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

223 advisories

Loading
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE... High Unreviewed
CVE-2025-21452 was published Aug 6, 2025
Transient DOS while processing an ANQP message. High Unreviewed
CVE-2025-27066 was published Aug 6, 2025
Transient DOS while creating NDP instance. High Unreviewed
CVE-2025-27073 was published Aug 6, 2025
FlashMQ v1.14.0 was discovered to contain an assertion failure in the function PublishCopyFactory... High Unreviewed
CVE-2024-42644 was published Jul 29, 2025
An issue in FlashMQ v1.14.0 allows attackers to cause an assertion failure via sending a crafted... High Unreviewed
CVE-2024-42645 was published Jul 29, 2025
A denial of service vulnerability exists in the Distributed Transaction Commit/Abort Operation... High Unreviewed
CVE-2025-46354 was published Jul 22, 2025
A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a... High Unreviewed
CVE-2025-36512 was published Jul 22, 2025
If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale... High Unreviewed
CVE-2025-40777 was published Jul 16, 2025
In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2... High Unreviewed
CVE-2025-49630 was published Jul 10, 2025
A Reachable Assertion vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2025-52964 was published Jul 11, 2025
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a. High Unreviewed
CVE-2022-31651 was published May 26, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... High Unreviewed
CVE-2021-3326 was published May 24, 2022
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf: Check... High Unreviewed
CVE-2023-52621 was published Mar 26, 2024
An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability... High Unreviewed
CVE-2025-29339 was published Apr 22, 2025
There is a reachable assertion abort in the function jpc_floorlog2() in jpc/jpc_math.c in JasPer... High Unreviewed
CVE-2017-13747 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1296... High Unreviewed
CVE-2017-13750 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dequantize() in jpc/jpc_dec.c in JasPer... High Unreviewed
CVE-2017-13752 was published May 13, 2022
There is a reachable assertion abort in the function jpc_pi_nextrpcl() in jpc/jpc_t2cod.c in... High Unreviewed
CVE-2017-13749 was published May 13, 2022
There is a reachable assertion abort in the function calcstepsizes() in jpc/jpc_dec.c in JasPer 2... High Unreviewed
CVE-2017-13751 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1297... High Unreviewed
CVE-2017-13746 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in... High Unreviewed
CVE-2017-13745 was published May 13, 2022
sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of... High Unreviewed
CVE-2017-8915 was published May 13, 2022
OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via... High Unreviewed
CVE-2017-7478 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database