Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,062
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,622
NuGet
638
pip
3,233
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

282 advisories

Loading
In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-47345 was published Feb 12, 2023
Denial of Service in dhowden/tag Moderate
CVE-2020-29242 was published for github.com/dhowden/tag (Go) Feb 7, 2023
Improper Validation of Array Index in GJSON High
CVE-2020-36067 was published for github.com/tidwall/gjson (Go) Feb 6, 2023
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager... High Unreviewed
CVE-2023-22401 was published Jan 13, 2023
An Improper Validation of Array Index vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2023-22408 was published Jan 13, 2023
Memory corruption in android core due to improper validation of array index while returning... High Unreviewed
CVE-2022-33274 was published Jan 9, 2023
If array shift operations are not used, the Garbage Collector may have become confused about... Moderate Unreviewed
CVE-2022-31745 was published Dec 22, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to improper validation of... High Unreviewed
CVE-2022-2951 was published Dec 13, 2022
Memory corruption in camera due to improper validation of array index in Snapdragon Auto,... High Unreviewed
CVE-2022-25711 was published Dec 13, 2022
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK... High Unreviewed
CVE-2022-25695 was published Dec 13, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x... Moderate Unreviewed
CVE-2022-42011 was published Oct 10, 2022
etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic Moderate
CVE-2020-15112 was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022
Information disclosure in WLAN due to improper validation of array index while parsing crafted... High Unreviewed
CVE-2022-25690 was published Sep 17, 2022
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto High Unreviewed
CVE-2022-22099 was published Sep 3, 2022
`libsqlite3-sys` via C SQLite improperly validates array index High
CVE-2022-35737 was published for libsqlite3-sys (Rust) Aug 4, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high... Moderate Unreviewed
CVE-2022-31603 was published Jul 5, 2022
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon... High Unreviewed
CVE-2021-35126 was published Jun 15, 2022
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free... Moderate Unreviewed
CVE-2021-35121 was published Jun 15, 2022
Possible buffer overflow due to improper validation of array index while processing external DIAG... High Unreviewed
CVE-2021-35072 was published Jun 15, 2022
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in... High Unreviewed
CVE-2021-30255 was published May 24, 2022
Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for... Moderate Unreviewed
CVE-2021-1117 was published May 24, 2022
Microsoft Office Visio Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38654 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35634 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API