Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

382 advisories

Loading
Information disclosure in WLAN due to improper validation of array index while parsing crafted... High Unreviewed
CVE-2022-25690 was published Sep 17, 2022
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto High Unreviewed
CVE-2022-22099 was published Sep 3, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high... Moderate Unreviewed
CVE-2022-31603 was published Jul 5, 2022
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free... Moderate Unreviewed
CVE-2021-35121 was published Jun 15, 2022
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon... High Unreviewed
CVE-2021-35126 was published Jun 15, 2022
Possible buffer overflow due to improper validation of array index while processing external DIAG... High Unreviewed
CVE-2021-35072 was published Jun 15, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0906 was published May 24, 2022
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in... High Unreviewed
CVE-2021-30255 was published May 24, 2022
Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for... Moderate Unreviewed
CVE-2021-1117 was published May 24, 2022
Microsoft Office Visio Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38654 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35635 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35633 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35634 was published May 24, 2022
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It... Critical Unreviewed
CVE-2021-38563 was published May 24, 2022
An improper array index validation vulnerability exists in the LoadObj functionality of... High Unreviewed
CVE-2020-28589 was published May 24, 2022
tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR... High Unreviewed
CVE-2020-18428 was published May 24, 2022
tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage... High Unreviewed
CVE-2020-18430 was published May 24, 2022
Buffer overflow in modem due to improper array index check before copying into it in Snapdragon... Critical Unreviewed
CVE-2020-11307 was published May 24, 2022
There is an Improper Validation of Array Index Vulnerability in Huawei Smartphone. Successful... High Unreviewed
CVE-2021-22374 was published May 24, 2022
An improper array index validation vulnerability exists in the TIF IP_planar_raster_unpack... Critical Unreviewed
CVE-2021-21833 was published May 24, 2022
TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index... High Unreviewed
CVE-2021-31658 was published May 24, 2022
Possible buffer overflow while updating ikev2 parameters for delete payloads received during... Critical Unreviewed
CVE-2020-11291 was published May 24, 2022
There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful... Critical Unreviewed
CVE-2021-22333 was published May 24, 2022
dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because... High Unreviewed
CVE-2021-33815 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database