Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
46
Go
3,270
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,517
Pub
12
RubyGems
998
Rust
1,194
Swift
51
Unreviewed advisories
All unreviewed
5,000+

40 advisories

Loading
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It... Critical Unreviewed
CVE-2021-38563 was published May 24, 2022
UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon... Critical Unreviewed
CVE-2021-1933 was published May 24, 2022
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed
CVE-2022-25720 was published Oct 19, 2022
The affected products are vulnerable to an improper validation of array index, which could allow... Critical Unreviewed
CVE-2023-0755 was published Feb 24, 2023
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP... Critical Unreviewed
CVE-2022-40537 was published Mar 10, 2023
Memory corruption due to improper validation of array index in Multi-mode call processor. Critical Unreviewed
CVE-2022-33256 was published Mar 10, 2023
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index. Critical Unreviewed
CVE-2023-26066 was published Apr 10, 2023
A CWE-129: Improper validation of an array index vulnerability exists where a specially... Critical Unreviewed
CVE-2023-28004 was published Apr 19, 2023
Vyper negative array index bounds checks Critical
CVE-2024-24563 was published for vyper (pip) Feb 7, 2024
cyberthirst Credited to cyberthirst and iFrostizz iFrostizz iFrostizz
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability... Critical Unreviewed
CVE-2024-31581 was published Apr 17, 2024
O-RAN RIC I-Release e2mgr lacks array size checks in E2nodeConfigUpdateNotificationHandler. Critical Unreviewed
CVE-2024-34048 was published Apr 30, 2024
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable... Critical Unreviewed
CVE-2024-38623 was published Jun 21, 2024
Memory corruption while parsing the ML IE due to invalid frame content. Critical Unreviewed
CVE-2024-45569 was published Feb 3, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to... Critical Unreviewed
CVE-2025-3357 was published May 28, 2025
Memory corruption while selecting the PLMN from SOR failed list. Critical Unreviewed
CVE-2025-27034 was published Sep 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database