Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,436
Erlang
29
GitHub Actions
16
Go
1,661
Maven
4,922
npm
3,450
NuGet
594
pip
2,840
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

322 advisories

Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-51560 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42102 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42105 was published May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42074 was published May 3, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-38091 was published May 3, 2024
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997... High Unreviewed
CVE-2024-25575 was published Apr 30, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26232 was published Apr 9, 2024
Remote Procedure Call Runtime Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20678 was published Apr 9, 2024
eyre: Parts of Report are dropped as the wrong type during downcast High
GHSA-4v52-7q2x-v4xj was published for eyre (Rust) Apr 5, 2024
Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-30357 was published Apr 2, 2024
Wasmtime vulnerable to panic when using a dropped extenref-typed element segment Low
CVE-2024-30266 was published for wasmtime (Rust) Apr 2, 2024
ShinWonho
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2024-21834 was published Apr 2, 2024
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21357 was published Feb 13, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21363 was published Feb 13, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20012 was published Feb 5, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20010 was published Feb 5, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in tvOS 17.3, iOS... High Unreviewed
CVE-2024-23222 was published Jan 23, 2024
Type confusion in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to... High Unreviewed
CVE-2024-0518 was published Jan 17, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2023-41060 was published Jan 11, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2023-41075 was published Jan 11, 2024
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20662 was published Jan 9, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-6939 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51426 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23443 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23442 was published Dec 29, 2023
ProTip! Advisories are also available from the GraphQL API