Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

288 advisories

Loading
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11902 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11827 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11299 was published May 14, 2022
In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7... High Unreviewed
CVE-2018-4210 was published May 14, 2022
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650,... High Unreviewed
CVE-2018-11267 was published May 14, 2022
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645,... High Unreviewed
CVE-2018-11268 was published May 14, 2022
Exceeding the limit of usage entries are not tracked and the information will be lost causing the... Moderate Unreviewed
CVE-2018-11948 was published May 14, 2022
Improper validation of array index can lead to unauthorized access while processing debugFS in... High Unreviewed
CVE-2018-13913 was published May 14, 2022
While processing radio connection status change events, Radio index is not properly validated in... High Unreviewed
CVE-2018-11899 was published May 14, 2022
FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in... Moderate Unreviewed
CVE-2019-1000016 was published May 14, 2022
Possible undefined behavior due to lack of size check in function for parameter segment_idx can... High Unreviewed
CVE-2018-11288 was published May 14, 2022
Improper input validation in TZ led to array out of bound in TZ function while accessing the... High Unreviewed
CVE-2018-5914 was published May 14, 2022
When a malformed command is sent to the device programmer, an out-of-bounds access can occur in... High Unreviewed
CVE-2018-11996 was published May 14, 2022
A micro-core of QMP transportation may cause a macro-core to read from or write to arbitrary... High Unreviewed
CVE-2017-18309 was published May 14, 2022
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645,... High Unreviewed
CVE-2018-11269 was published May 14, 2022
In all Android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11263 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11883 was published May 14, 2022
simplejson before 2.6.1 vulnerable to array index error Moderate
CVE-2014-4616 was published for simplejson (pip) May 14, 2022
westonsteimel
Improper Validation of Array Index In the adreno OpenGL driver in Snapdragon Automobile,... High Unreviewed
CVE-2018-5838 was published May 14, 2022
Go Ethereum LES protocol implementation vulnerable to Denial of Service High
CVE-2018-12018 was published for github.com/ethereum/go-ethereum (Go) May 14, 2022
A vulnerability while parsing "application/http-index-format" format content where uninitialized... High Unreviewed
CVE-2017-5445 was published May 14, 2022
improper validation of array index in WiFi driver function sapInterferenceRssiCount() leads to... High Unreviewed
CVE-2018-3576 was published May 14, 2022
In the camera driver, an out-of-bounds access can occur due to an error in copying region params... High Unreviewed
CVE-2017-15857 was published May 14, 2022
An issue was discovered in Foxit Reader before 9.1 and PhantomPDF before 9.1. This vulnerability... High Unreviewed
CVE-2018-7406 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2014-9989 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API