Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

340 advisories

Loading
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20633 was published Mar 7, 2023
The affected products are vulnerable to an improper validation of array index, which could allow... Critical Unreviewed
CVE-2023-0755 was published Feb 24, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47344 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47346 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47343 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47347 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47342 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47345 was published Feb 12, 2023
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47348 was published Feb 12, 2023
Denial of Service in dhowden/tag Moderate
CVE-2020-29242 was published for github.com/dhowden/tag (Go) Feb 7, 2023
Improper Validation of Array Index in GJSON High
CVE-2020-36067 was published for github.com/tidwall/gjson (Go) Feb 6, 2023
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager... High Unreviewed
CVE-2023-22401 was published Jan 13, 2023
An Improper Validation of Array Index vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2023-22408 was published Jan 13, 2023
Memory corruption in android core due to improper validation of array index while returning... High Unreviewed
CVE-2022-33274 was published Jan 9, 2023
If array shift operations are not used, the Garbage Collector may have become confused about... Moderate Unreviewed
CVE-2022-31745 was published Dec 22, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to improper validation of... High Unreviewed
CVE-2022-2951 was published Dec 13, 2022
Memory corruption in camera due to improper validation of array index in Snapdragon Auto,... High Unreviewed
CVE-2022-25711 was published Dec 13, 2022
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK... High Unreviewed
CVE-2022-25695 was published Dec 13, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x... Moderate Unreviewed
CVE-2022-42011 was published Oct 10, 2022
etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic Moderate
CVE-2020-15112 was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022
Information disclosure in WLAN due to improper validation of array index while parsing crafted... High Unreviewed
CVE-2022-25690 was published Sep 17, 2022
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto High Unreviewed
CVE-2022-22099 was published Sep 3, 2022
`libsqlite3-sys` via C SQLite improperly validates array index High
CVE-2022-35737 was published for libsqlite3-sys (Rust) Aug 4, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high... Moderate Unreviewed
CVE-2022-31603 was published Jul 5, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database