Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

36 advisories

Loading
An exploitable out-of-bounds indexing vulnerability exists within the RW fabric message particle... Critical Unreviewed
CVE-2016-9053 was published May 13, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ... Critical Unreviewed
CVE-2020-27485 was published May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ... Critical Unreviewed
CVE-2020-27483 was published May 24, 2022
u'Buffer overflow occurs while processing SIP message packet due to lack of check of index... Critical Unreviewed
CVE-2020-3654 was published May 24, 2022
u'Buffer overflow can happen as part of SIP message packet processing while storing values in... Critical Unreviewed
CVE-2020-3673 was published May 24, 2022
u'When a non standard SIP sigcomp message is received from the network, then there may be chances... Critical Unreviewed
CVE-2020-3639 was published May 24, 2022
Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation... Critical Unreviewed
CVE-2020-11163 was published May 24, 2022
Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size... Critical Unreviewed
CVE-2020-11227 was published May 24, 2022
An improper array index validation vulnerability exists in the TIF IP_planar_raster_unpack... Critical Unreviewed
CVE-2021-21833 was published May 24, 2022
Possible buffer overflow while updating ikev2 parameters for delete payloads received during... Critical Unreviewed
CVE-2020-11291 was published May 24, 2022
There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful... Critical Unreviewed
CVE-2021-22333 was published May 24, 2022
Buffer overflow in modem due to improper array index check before copying into it in Snapdragon... Critical Unreviewed
CVE-2020-11307 was published May 24, 2022
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It... Critical Unreviewed
CVE-2021-38563 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful... Critical Unreviewed
CVE-2021-37062 was published Dec 8, 2021
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2014-10048 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 425... Critical Unreviewed
CVE-2016-10454 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, an array index... Critical Unreviewed
CVE-2016-10386 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2014-9990 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2014-9989 was published May 14, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
Janet before 1.22.0 mishandles arrays. Critical Unreviewed
CVE-2022-30763 was published May 17, 2022
The affected products are vulnerable to an improper validation of array index, which could allow... Critical Unreviewed
CVE-2023-0755 was published Feb 24, 2023
Memory corruption due to improper validation of array index in Multi-mode call processor. Critical Unreviewed
CVE-2022-33256 was published Mar 10, 2023
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP... Critical Unreviewed
CVE-2022-40537 was published Mar 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database