Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

358 advisories

Loading
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47342 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47348 was published Feb 12, 2023
Denial of Service in dhowden/tag Moderate
CVE-2020-29242 was published for github.com/dhowden/tag (Go) Feb 7, 2023
Improper Validation of Array Index in GJSON High
CVE-2020-36067 was published for github.com/tidwall/gjson (Go) Feb 6, 2023
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager... High Unreviewed
CVE-2023-22401 was published Jan 13, 2023
An Improper Validation of Array Index vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2023-22408 was published Jan 13, 2023
Memory corruption in android core due to improper validation of array index while returning... High Unreviewed
CVE-2022-33274 was published Jan 9, 2023
If array shift operations are not used, the Garbage Collector may have become confused about... Moderate Unreviewed
CVE-2022-31745 was published Dec 22, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to improper validation of... High Unreviewed
CVE-2022-2951 was published Dec 13, 2022
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK... High Unreviewed
CVE-2022-25695 was published Dec 13, 2022
Memory corruption in camera due to improper validation of array index in Snapdragon Auto,... High Unreviewed
CVE-2022-25711 was published Dec 13, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x... Moderate Unreviewed
CVE-2022-42011 was published Oct 10, 2022
etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic Moderate
CVE-2020-15112 was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022
Information disclosure in WLAN due to improper validation of array index while parsing crafted... High Unreviewed
CVE-2022-25690 was published Sep 17, 2022
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto High Unreviewed
CVE-2022-22099 was published Sep 3, 2022
`libsqlite3-sys` via C SQLite improperly validates array index High
CVE-2022-35737 was published for libsqlite3-sys (Rust) Aug 4, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high... Moderate Unreviewed
CVE-2022-31603 was published Jul 5, 2022
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free... Moderate Unreviewed
CVE-2021-35121 was published Jun 15, 2022
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon... High Unreviewed
CVE-2021-35126 was published Jun 15, 2022
Possible buffer overflow due to improper validation of array index while processing external DIAG... High Unreviewed
CVE-2021-35072 was published Jun 15, 2022
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in... High Unreviewed
CVE-2021-30255 was published May 24, 2022
Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for... Moderate Unreviewed
CVE-2021-1117 was published May 24, 2022
Microsoft Office Visio Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38654 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database