GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,980
Composer 5,212
Erlang 40
GitHub Actions 40
Go 2,957
Maven 6,249
npm 4,607
NuGet 787
pip 4,306
Pub 12
RubyGems 984
Rust 1,121
Swift 49

Unreviewed advisories

All unreviewed 288,979

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

79 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Index out of bounds leading to crash Moderate

CVE-2023-36307 was published for simonwaldherr.de/go/zplgfa (Go) Sep 5, 2023

Improper Validation of Array Index in github.com/greenpau/caddy-security Moderate

CVE-2024-21493 was published for github.com/greenpau/caddy-security (Go) Feb 17, 2024

Multiple array index errors in the bpf_filter_init function in NPF.SYS in WinPcap before 4.0.2,... Moderate Unreviewed

CVE-2007-5756 was published May 1, 2022

tiny-curl-8_4_0 , curl-8_4_0 and curl-8_5_0 were discovered to contain an off-by-one out-of... Moderate Unreviewed

CVE-2023-52071 was published Jan 30, 2024

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability... Moderate Unreviewed

CVE-2023-6298 was published Nov 27, 2023

dhowden tag panic due to out-of-bounds read Moderate

CVE-2020-29245 was published for github.com/dhowden/tag (Go) May 24, 2022

In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed

CVE-2023-20633 was published Mar 7, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47344 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47347 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47342 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47343 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47345 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47346 was published Feb 12, 2023

In engineermode services, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-47348 was published Feb 12, 2023

etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic Moderate

CVE-2020-15112 was published for go.etcd.io/etcd/v3 (Go) Oct 6, 2022

The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-7170 was published May 13, 2022

Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2... Moderate Unreviewed

CVE-2010-2806 was published May 13, 2022

Possible out of bound access of DCI resources due to lack of validation process and resource... Moderate Unreviewed

CVE-2021-30325 was published Feb 12, 2022

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has... Moderate Unreviewed

CVE-2020-20412 was published May 24, 2022

Array index error in LightDM (aka Light Display Manager) 1.14.3, 1.16.x before 1.16.6 when the... Moderate Unreviewed

CVE-2015-8316 was published May 17, 2022

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in... Moderate Unreviewed

CVE-2019-1000016 was published May 14, 2022

Exceeding the limit of usage entries are not tracked and the information will be lost causing the... Moderate Unreviewed

CVE-2018-11948 was published May 14, 2022

Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for... Moderate Unreviewed

CVE-2021-1117 was published May 24, 2022

Possible memory corruption in perfservice due to improper validation array length taken from user... Moderate Unreviewed

CVE-2020-3676 was published May 24, 2022

Multiple memory corruption issues were addressed with improved memory handling. This issue is... Moderate Unreviewed

CVE-2019-8587 was published May 24, 2022

Previous 1…34 Next

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

79 advisories