Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

37 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable... Critical Unreviewed
CVE-2024-38623 was published Jun 21, 2024
O-RAN RIC I-Release e2mgr lacks array size checks in E2nodeConfigUpdateNotificationHandler. Critical Unreviewed
CVE-2024-34048 was published Apr 30, 2024
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability... Critical Unreviewed
CVE-2024-31581 was published Apr 17, 2024
Vyper negative array index bounds checks Critical
CVE-2024-24563 was published for vyper (pip) Feb 7, 2024
cyberthirst iFrostizz
A CWE-129: Improper validation of an array index vulnerability exists where a specially... Critical Unreviewed
CVE-2023-28004 was published Apr 19, 2023
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index. Critical Unreviewed
CVE-2023-26066 was published Apr 10, 2023
Memory corruption due to improper validation of array index in Multi-mode call processor. Critical Unreviewed
CVE-2022-33256 was published Mar 10, 2023
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP... Critical Unreviewed
CVE-2022-40537 was published Mar 10, 2023
The affected products are vulnerable to an improper validation of array index, which could allow... Critical Unreviewed
CVE-2023-0755 was published Feb 24, 2023
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It... Critical Unreviewed
CVE-2021-38563 was published May 24, 2022
Buffer overflow in modem due to improper array index check before copying into it in Snapdragon... Critical Unreviewed
CVE-2020-11307 was published May 24, 2022
An improper array index validation vulnerability exists in the TIF IP_planar_raster_unpack... Critical Unreviewed
CVE-2021-21833 was published May 24, 2022
Possible buffer overflow while updating ikev2 parameters for delete payloads received during... Critical Unreviewed
CVE-2020-11291 was published May 24, 2022
There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful... Critical Unreviewed
CVE-2021-22333 was published May 24, 2022
Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size... Critical Unreviewed
CVE-2020-11227 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... Critical Unreviewed
CVE-2020-28601 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... Critical Unreviewed
CVE-2020-35628 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... Critical Unreviewed
CVE-2020-28636 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... Critical Unreviewed
CVE-2020-35636 was published May 24, 2022
Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation... Critical Unreviewed
CVE-2020-11163 was published May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ... Critical Unreviewed
CVE-2020-27483 was published May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ... Critical Unreviewed
CVE-2020-27485 was published May 24, 2022
u'When a non standard SIP sigcomp message is received from the network, then there may be chances... Critical Unreviewed
CVE-2020-3639 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API