Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

337 advisories

Loading
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2024-31071 was published Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2024-36278 was published Jul 2, 2024
In venc, there is a possible out of bounds write due to type confusion. This could lead to local... Unknown Unreviewed
CVE-2024-20078 was published Jul 1, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6100 was published Jun 20, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5837 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform... High Unreviewed
CVE-2024-5838 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform... High Unreviewed
CVE-2024-5830 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5833 was published Jun 11, 2024
Fuji Electric Monitouch V-SFT is vulnerable to a type confusion, which could cause a crash or... High Unreviewed
CVE-2024-5597 was published Jun 10, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute... High Unreviewed
CVE-2024-4947 was published May 15, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30034 was published May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32057 was published May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32063 was published May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32062 was published May 14, 2024
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-51560 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42102 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42105 was published May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42074 was published May 3, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-38091 was published May 3, 2024
Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to... High Unreviewed
CVE-2024-4058 was published May 1, 2024
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997... High Unreviewed
CVE-2024-25575 was published Apr 30, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26232 was published Apr 9, 2024
Remote Procedure Call Runtime Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20678 was published Apr 9, 2024
eyre: Parts of Report are dropped as the wrong type during downcast High
GHSA-4v52-7q2x-v4xj was published for eyre (Rust) Apr 5, 2024
Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-30357 was published Apr 2, 2024
ProTip! Advisories are also available from the GraphQL API