GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
337 advisories
Filter by severity
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type...
Low
Unreviewed
CVE-2024-31071
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type...
Low
Unreviewed
CVE-2024-36278
was published
Jul 2, 2024
In venc, there is a possible out of bounds write due to type confusion. This could lead to local...
Unknown
Unreviewed
CVE-2024-20078
was published
Jul 1, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to...
High
Unreviewed
CVE-2024-6100
was published
Jun 20, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to...
High
Unreviewed
CVE-2024-5837
was published
Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-5838
was published
Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-5830
was published
Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to...
High
Unreviewed
CVE-2024-5833
was published
Jun 11, 2024
Fuji Electric Monitouch V-SFT is vulnerable to a type confusion, which could cause a crash or...
High
Unreviewed
CVE-2024-5597
was published
Jun 10, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute...
High
Unreviewed
CVE-2024-4947
was published
May 15, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30034
was published
May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27...
High
Unreviewed
CVE-2024-32057
was published
May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27...
High
Unreviewed
CVE-2024-32063
was published
May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27...
High
Unreviewed
CVE-2024-32062
was published
May 14, 2024
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51560
was published
May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42102
was published
May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42105
was published
May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42074
was published
May 3, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-38091
was published
May 3, 2024
Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to...
High
Unreviewed
CVE-2024-4058
was published
May 1, 2024
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997...
High
Unreviewed
CVE-2024-25575
was published
Apr 30, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26232
was published
Apr 9, 2024
Remote Procedure Call Runtime Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20678
was published
Apr 9, 2024
eyre: Parts of Report are dropped as the wrong type during downcast
High
GHSA-4v52-7q2x-v4xj
was published
for
eyre
(Rust)
Apr 5, 2024
Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-30357
was published
Apr 2, 2024
ProTip!
Advisories are also available from the
GraphQL API