Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,781
Erlang
36
GitHub Actions
29
Go
2,345
Maven
5,000+
npm
3,976
NuGet
719
pip
3,772
Pub
12
RubyGems
923
Rust
980
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

153 advisories

Loading
Transient DOS while processing the tone measurement response buffer when the response buffer is... High Unreviewed
CVE-2025-27029 was published Jun 3, 2025
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call. High Unreviewed
CVE-2024-53026 was published Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with improper header length for... High Unreviewed
CVE-2024-53019 was published Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with invalid header extension from... High Unreviewed
CVE-2024-53020 was published Jun 3, 2025
Information disclosure may occur while processing goodbye RTCP packet from network. High Unreviewed
CVE-2024-53021 was published Jun 3, 2025
Transient DOS while processing the EHT operation IE in the received beacon frame. High Unreviewed
CVE-2025-21463 was published Jun 3, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before... High Unreviewed
CVE-2024-52879 was published May 15, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before... High Unreviewed
CVE-2024-52878 was published May 15, 2025
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before... High Unreviewed
CVE-2024-52877 was published May 15, 2025
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. High Unreviewed
CVE-2025-32704 was published May 13, 2025
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value. High Unreviewed
CVE-2025-21475 was published May 6, 2025
Memory corruption while decoding of OTA messages from T3448 IE. High Unreviewed
CVE-2024-49846 was published May 6, 2025
Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key... High Unreviewed
CVE-2024-49847 was published May 6, 2025
Transient DOS while parsing per STA profile in ML IE. High Unreviewed
CVE-2025-21459 was published May 6, 2025
Transient DOS may occur while parsing SSID in action frames. High Unreviewed
CVE-2025-21448 was published Apr 7, 2025
Information disclosure may occur during a video call if a device resets due to a non-conforming... High Unreviewed
CVE-2024-45552 was published Apr 7, 2025
Transient DOS may occur while parsing EHT operation IE or EHT capability IE. High Unreviewed
CVE-2025-21434 was published Apr 7, 2025
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from... High Unreviewed
CVE-2025-21428 was published Apr 7, 2025
Transient DOS may occur while parsing extended IE in beacon. High Unreviewed
CVE-2025-21435 was published Apr 7, 2025
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request. High Unreviewed
CVE-2025-21429 was published Apr 7, 2025
Memory corruption while processing escape code in API. High Unreviewed
CVE-2025-21421 was published Apr 7, 2025
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec... High Unreviewed
CVE-2025-21430 was published Apr 7, 2025
A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running... High Unreviewed
CVE-2024-12011 was published Feb 13, 2025
Memory corruption during management frame processing due to mismatch in T2LM info element. High Unreviewed
CVE-2024-49839 was published Feb 3, 2025
Memory corruption while handling IOCTL call from user-space to set latency level. High Unreviewed
CVE-2024-45561 was published Feb 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database