Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,039
Erlang
29
GitHub Actions
18
Go
1,864
Maven
5,000+
npm
3,587
NuGet
636
pip
3,176
Pub
10
RubyGems
852
Rust
805
Swift
34
Unreviewed advisories
All unreviewed
5,000+

275 advisories

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix array-index-out-of... High Unreviewed
CVE-2024-43858 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array... High Unreviewed
CVE-2024-42301 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix array... High Unreviewed
CVE-2024-41061 was published Jul 29, 2024
CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of... High Unreviewed
CVE-2024-5680 was published Jul 11, 2024
audify vulnerable to Improper Validation of Array Index High
CVE-2024-21522 was published for audify (npm) Jul 10, 2024
Improper Validation of Array Index vulnerability in Samsung Open Source Walrus Webassembly... Low Unreviewed
CVE-2024-32673 was published Jul 3, 2024
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable... Critical Unreviewed
CVE-2024-38623 was published Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved: ice: fix locking for Tx... High Unreviewed
CVE-2021-47449 was published May 22, 2024
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution... High Unreviewed
CVE-2023-40477 was published May 3, 2024
BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-27349 was published May 3, 2024
Open Networking Foundation SD-RAN Rimedo rimedo-ts 0.1.1 has a slice bounds out-of-range panic in... High Unreviewed
CVE-2024-34050 was published Apr 30, 2024
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability... Critical Unreviewed
CVE-2024-31581 was published Apr 17, 2024
Apfloat v1.10.1 was discovered to contain an ArrayIndexOutOfBoundsException via the component org... High Unreviewed
CVE-2024-23084 was published Apr 9, 2024
A Improper Validation of Array Index issue affecting the v2_sdk_service running on a set of DJI... Moderate Unreviewed
CVE-2023-51455 was published Apr 2, 2024
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in... Moderate Unreviewed
CVE-2023-33111 was published Apr 1, 2024
Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in... Moderate Unreviewed
CVE-2024-29231 was published Mar 28, 2024
Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an... High Unreviewed
CVE-2024-0901 was published Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved: thermal/drivers... Moderate Unreviewed
CVE-2020-36776 was published Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/memhp: Fix... High Unreviewed
CVE-2023-52451 was published Feb 22, 2024
Improper Validation of Array Index in github.com/greenpau/caddy-security Moderate
CVE-2024-21493 was published for github.com/greenpau/caddy-security (Go) Feb 17, 2024
Vyper negative array index bounds checks Critical
CVE-2024-24563 was published for vyper (pip) Feb 7, 2024
cyberthirst iFrostizz
Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE... High Unreviewed
CVE-2023-43535 was published Feb 6, 2024
tiny-curl-8_4_0 , curl-8_4_0 and curl-8_5_0 were discovered to contain an off-by-one out-of... Moderate Unreviewed
CVE-2023-52071 was published Jan 30, 2024
Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort... High Unreviewed
CVE-2023-39235 was published Jan 8, 2024
Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort... High Unreviewed
CVE-2023-39234 was published Jan 8, 2024
ProTip! Advisories are also available from the GraphQL API