Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

221 advisories

Loading
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a... High Unreviewed
CVE-2024-56921 was published Feb 3, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2024-57519 was published Jan 29, 2025
A reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows... High Unreviewed
CVE-2024-24429 was published Jan 22, 2025
A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24430 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37016 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet... High Unreviewed
CVE-2023-37023 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37018 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37019 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37020 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37017 was published Jan 22, 2025
Open5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37021 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37015 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2024-34235 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a... High Unreviewed
CVE-2023-37013 was published Jan 22, 2025
A reachable assertion in the decode_access_point_name_ie function of Magma <= 1.8.0 (fixed in v1... High Unreviewed
CVE-2024-24424 was published Jan 22, 2025
A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24428 was published Jan 22, 2025
A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24427 was published Jan 22, 2025
A reachable assertion in the decode_linked_ti_ie function of Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24420 was published Jan 22, 2025
Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are... High Unreviewed
CVE-2023-37029 was published Jan 22, 2025
A reachable assertion in the Mobile Management Entity (MME) of Magma versions <= 1.8.0 (fixed in... High Unreviewed
CVE-2023-37024 was published Jan 22, 2025
rPGP Panics on Malformed Untrusted Input High
CVE-2024-53856 was published for pgp (Rust) Dec 5, 2024
invd hko-s
dignifiedquire link2xt
Open62541 v1.4.6 is has an assertion failure in fuzz_binary_decode, which leads to a crash. High Unreviewed
CVE-2024-53429 was published Dec 3, 2024
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen... High Unreviewed
CVE-2024-23385 was published Nov 4, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via... High Unreviewed
CVE-2024-10455 was published Oct 28, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to... High Unreviewed
CVE-2024-20094 was published Oct 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database