GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,436
Erlang
29
GitHub Actions
16
Go
1,661
Maven
4,922
npm
3,450
NuGet
594
pip
2,840
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
322 advisories
Filter by severity
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51560
was published
May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42102
was published
May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42105
was published
May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42074
was published
May 3, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-38091
was published
May 3, 2024
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997...
High
Unreviewed
CVE-2024-25575
was published
Apr 30, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26232
was published
Apr 9, 2024
Remote Procedure Call Runtime Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20678
was published
Apr 9, 2024
eyre: Parts of Report are dropped as the wrong type during downcast
High
GHSA-4v52-7q2x-v4xj
was published
for
eyre
(Rust)
Apr 5, 2024
Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-30357
was published
Apr 2, 2024
Wasmtime vulnerable to panic when using a dropped extenref-typed element segment
Low
CVE-2024-30266
was published
for
wasmtime
(Rust)
Apr 2, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type...
Low
Unreviewed
CVE-2024-21834
was published
Apr 2, 2024
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21357
was published
Feb 13, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21363
was published
Feb 13, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead...
Moderate
Unreviewed
CVE-2024-20012
was published
Feb 5, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead...
Moderate
Unreviewed
CVE-2024-20010
was published
Feb 5, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in tvOS 17.3, iOS...
High
Unreviewed
CVE-2024-23222
was published
Jan 23, 2024
Type confusion in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to...
High
Unreviewed
CVE-2024-0518
was published
Jan 17, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14...
High
Unreviewed
CVE-2023-41060
was published
Jan 11, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur...
High
Unreviewed
CVE-2023-41075
was published
Jan 11, 2024
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-20662
was published
Jan 9, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-6939
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-51426
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-23443
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-23442
was published
Dec 29, 2023
ProTip!
Advisories are also available from the
GraphQL API