Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

358 advisories

Loading
Index out of bounds leading to crash Moderate
CVE-2023-36307 was published for simonwaldherr.de/go/zplgfa (Go) Sep 5, 2023
Crash when processing crafted TIFF files Low
CVE-2023-36308 was published for github.com/disintegration/imaging (Go) Sep 5, 2023
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length. High Unreviewed
CVE-2023-21650 was published Aug 8, 2023
Duktape is an 3rd-party embeddable JavaScript engine, with a focus on portability and compact... High Unreviewed
CVE-2023-29458 was published Jul 13, 2023
An access violation vulnerability exists in the GraphPlanar::Write functionality of Diagon v1.0... High Unreviewed
CVE-2023-31194 was published Jul 5, 2023
A CWE-129: Improper Validation of Array Index vulnerability exists that could cause local... High Unreviewed
CVE-2023-2570 was published Jun 14, 2023
Improper Validation of Array Index vulnerability in the spreadsheet component of The Document... High Unreviewed
CVE-2023-0950 was published May 25, 2023
Memory corruption due to improper validation of array index in computer vision while testing EVA... High Unreviewed
CVE-2022-33281 was published May 2, 2023
A CWE-129: Improper validation of an array index vulnerability exists where a specially... Critical Unreviewed
CVE-2023-28004 was published Apr 19, 2023
A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a... High Unreviewed
CVE-2023-2008 was published Apr 14, 2023
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU... Moderate Unreviewed
CVE-2022-33289 was published Apr 13, 2023
Memory corruption due to improper validation of array index in User Identity Module when APN TLV... High Unreviewed
CVE-2022-33302 was published Apr 13, 2023
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index. Critical Unreviewed
CVE-2023-26066 was published Apr 10, 2023
ADMesh improper array index validation High
CVE-2022-38072 was published for admesh (pip) Apr 3, 2023
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and... High Unreviewed
CVE-2023-20080 was published Mar 23, 2023
Memory corruption due to improper validation of array index in Multi-mode call processor. Critical Unreviewed
CVE-2022-33256 was published Mar 10, 2023
Memory corruption in Automotive Android OS due to improper validation of array index. High Unreviewed
CVE-2022-40539 was published Mar 10, 2023
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP... Critical Unreviewed
CVE-2022-40537 was published Mar 10, 2023
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20633 was published Mar 7, 2023
The affected products are vulnerable to an improper validation of array index, which could allow... Critical Unreviewed
CVE-2023-0755 was published Feb 24, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47347 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47346 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47343 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47345 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47344 was published Feb 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database