GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
328 advisories
Filter by severity
Issue was discovered in the fxParserTree function in moddable, allows attackers to cause denial...
High
Unreviewed
CVE-2020-22882
was published
May 24, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey...
High
Unreviewed
CVE-2022-42841
was published
Dec 15, 2022
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to...
High
Unreviewed
CVE-2021-30563
was published
May 24, 2022
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to...
High
Unreviewed
CVE-2021-30561
was published
May 24, 2022
Type confusion in V8 in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to...
High
Unreviewed
CVE-2021-30588
was published
May 24, 2022
Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017...
Low
Unreviewed
CVE-2021-35986
was published
May 24, 2022
Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017...
Low
Unreviewed
CVE-2021-28643
was published
May 24, 2022
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute...
High
Unreviewed
CVE-2021-30599
was published
May 24, 2022
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute...
High
Unreviewed
CVE-2021-30598
was published
May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS...
Critical
Unreviewed
CVE-2021-1829
was published
May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14...
High
Unreviewed
CVE-2021-30758
was published
May 24, 2022
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017...
High
Unreviewed
CVE-2021-39841
was published
May 24, 2022
Type confusion in Blink layout in Google Chrome prior to 93.0.4577.82 allowed a remote attacker...
High
Unreviewed
CVE-2021-30627
was published
May 24, 2022
In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type...
Moderate
Unreviewed
CVE-2022-3676
was published
Oct 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14...
High
Unreviewed
CVE-2021-30818
was published
May 24, 2022
An issue was discovered in Softing Industrial Automation uaToolkit Embedded before 1.40. Remote...
High
Unreviewed
CVE-2021-40872
was published
May 24, 2022
Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker...
High
Unreviewed
CVE-2018-6122
was published
May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)...
Moderate
Unreviewed
CVE-2021-31344
was published
May 24, 2022
An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66. Remote...
High
Unreviewed
CVE-2021-40871
was published
May 24, 2022
A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF...
High
Unreviewed
CVE-2020-13547
was published
May 24, 2022
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome...
High
Unreviewed
CVE-2014-1731
was published
May 17, 2022
Type confusion leading to `CHECK`-failure based denial of service in TensorFlow
Moderate
CVE-2022-29209
was published
for
tensorflow
(pip)
May 24, 2022
Type confusion in V8 in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to...
High
Unreviewed
CVE-2022-3652
was published
Nov 2, 2022
Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847...
High
Unreviewed
CVE-2014-1730
was published
May 17, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS...
High
Unreviewed
CVE-2022-32814
was published
Sep 25, 2022
ProTip!
Advisories are also available from the
GraphQL API