GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
223 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
ACPI: sysfs: validate return...
High
Unreviewed
CVE-2024-49860
was published
Oct 21, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to...
High
Unreviewed
CVE-2024-10230
was published
Oct 23, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to...
High
Unreviewed
CVE-2024-10231
was published
Oct 23, 2024
Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 allowed a remote attacker...
High
Unreviewed
CVE-2024-9859
was published
Oct 11, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9603
was published
Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9602
was published
Oct 9, 2024
Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to...
High
Unreviewed
CVE-2023-6702
was published
Dec 15, 2023
Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-9122
was published
Sep 25, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-5830
was published
Jun 11, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38209
was published
Aug 23, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8904
was published
Sep 17, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to...
High
Unreviewed
CVE-2024-5158
was published
May 22, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8638
was published
Sep 11, 2024
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are...
High
Unreviewed
CVE-2024-45112
was published
Sep 13, 2024
Issue summary: Applications performing certificate name checks (e.g., TLS
clients checking server...
High
Unreviewed
CVE-2024-6119
was published
Sep 3, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8194
was published
Aug 29, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7969
was published
Aug 21, 2024
Type Confusion in V8 in Google Chrome prior to 122.0.6261.94 allowed a remote attacker to...
High
Unreviewed
CVE-2024-1939
was published
Feb 29, 2024
In aoc_unlocked_ioctl of aoc.c, there is a possible memory corruption due to type confusion. This...
High
Unreviewed
CVE-2024-27236
was published
Mar 11, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14...
High
Unreviewed
CVE-2024-40803
was published
Jul 30, 2024
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit...
High
Unreviewed
CVE-2024-7971
was published
Aug 21, 2024
In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected...
High
Unreviewed
CVE-2024-32922
was published
Jun 13, 2024
Scripting Engine Memory Corruption Vulnerability
High
Unreviewed
CVE-2024-38178
was published
Aug 13, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
High
Unreviewed
CVE-2024-38218
was published
Aug 12, 2024
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code...
High
Unreviewed
CVE-2024-7520
was published
Aug 6, 2024
ProTip!
Advisories are also available from the
GraphQL API