Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,361
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,794
NuGet
685
pip
3,473
Pub
12
RubyGems
895
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

354 advisories

Loading
Buffer overflow in modem due to improper array index check before copying into it in Snapdragon... Critical Unreviewed
CVE-2020-11307 was published May 24, 2022
tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR... High Unreviewed
CVE-2020-18428 was published May 24, 2022
tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage... High Unreviewed
CVE-2020-18430 was published May 24, 2022
An improper array index validation vulnerability exists in the LoadObj functionality of... High Unreviewed
CVE-2020-28589 was published May 24, 2022
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It... Critical Unreviewed
CVE-2021-38563 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35634 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35633 was published May 24, 2022
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal... High Unreviewed
CVE-2020-35635 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
Microsoft Office Visio Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38654 was published May 24, 2022
Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for... Moderate Unreviewed
CVE-2021-1117 was published May 24, 2022
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in... High Unreviewed
CVE-2021-30255 was published May 24, 2022
Possible buffer overflow due to improper validation of array index while processing external DIAG... High Unreviewed
CVE-2021-35072 was published Jun 15, 2022
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free... Moderate Unreviewed
CVE-2021-35121 was published Jun 15, 2022
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon... High Unreviewed
CVE-2021-35126 was published Jun 15, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high... Moderate Unreviewed
CVE-2022-31603 was published Jul 5, 2022
`libsqlite3-sys` via C SQLite improperly validates array index High
CVE-2022-35737 was published for libsqlite3-sys (Rust) Aug 4, 2022
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto High Unreviewed
CVE-2022-22099 was published Sep 3, 2022
Information disclosure in WLAN due to improper validation of array index while parsing crafted... High Unreviewed
CVE-2022-25690 was published Sep 17, 2022
etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic Moderate
CVE-2020-15112 was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x... Moderate Unreviewed
CVE-2022-42011 was published Oct 10, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK... High Unreviewed
CVE-2022-25695 was published Dec 13, 2022
Memory corruption in camera due to improper validation of array index in Snapdragon Auto,... High Unreviewed
CVE-2022-25711 was published Dec 13, 2022
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to improper validation of... High Unreviewed
CVE-2022-2951 was published Dec 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database