Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+

455 advisories

Loading
A reachable assertion in the ogs_kdf_hash_mme function of Open5GS <= 2.6.4 allows attackers to... Moderate Unreviewed
CVE-2024-24432 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of... Moderate Unreviewed
CVE-2023-37008 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37007 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37004 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37005 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37002 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37003 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37006 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37009 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37010 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37011 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... Moderate Unreviewed
CVE-2023-37012 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37013 was published Jan 22, 2025
A reachable assertion in the Mobile Management Entity (MME) of Magma versions <= 1.8.0 (fixed in... High Unreviewed
CVE-2023-37024 was published Jan 22, 2025
Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are... High Unreviewed
CVE-2023-37029 was published Jan 22, 2025
A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24427 was published Jan 22, 2025
A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24428 was published Jan 22, 2025
A reachable assertion in the decode_access_point_name_ie function of Magma <= 1.8.0 (fixed in v1... High Unreviewed
CVE-2024-24424 was published Jan 22, 2025
A reachable assertion in the decode_linked_ti_ie function of Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24420 was published Jan 22, 2025
A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24430 was published Jan 22, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUG() after... Moderate Unreviewed
CVE-2023-52569 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket:... Moderate Unreviewed
CVE-2024-56783 was published Jan 8, 2025
xml-rs vulnerable to denial of service via invalid token in XML document High
CVE-2023-34411 was published for xml-rs (Rust) Jun 5, 2023
00xc
In wlan STA driver, there is a possible reachable assertion due to improper exception handling.... Moderate Unreviewed
CVE-2024-20152 was published Jan 6, 2025
Due to an unchecked buffer length, a specially crafted L2CAP packet can cause a buffer overflow.... Moderate Unreviewed
CVE-2024-7139 was published Dec 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database