GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
331 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
ACPI: sysfs: validate return...
High
Unreviewed
CVE-2024-49860
was published
Oct 21, 2024
In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to...
Moderate
Unreviewed
CVE-2024-20106
was published
Nov 4, 2024
marshall in dhcp_packet.c in simple-dhcp-server through ec976d2 allows remote attackers to cause...
Moderate
Unreviewed
CVE-2023-50433
was published
Apr 30, 2024
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot...
Moderate
Unreviewed
CVE-2024-7825
was published
Oct 3, 2024
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot...
Moderate
Unreviewed
CVE-2024-7824
was published
Oct 3, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to...
High
Unreviewed
CVE-2024-10230
was published
Oct 23, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to...
High
Unreviewed
CVE-2024-10231
was published
Oct 23, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43596
was published
Oct 18, 2024
Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 allowed a remote attacker...
High
Unreviewed
CVE-2024-9859
was published
Oct 11, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9603
was published
Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9602
was published
Oct 9, 2024
Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to...
High
Unreviewed
CVE-2023-6702
was published
Dec 15, 2023
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)...
Moderate
Unreviewed
CVE-2021-31344
was published
May 24, 2022
Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-9122
was published
Sep 25, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-5830
was published
Jun 11, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38209
was published
Aug 23, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
Moderate
Unreviewed
CVE-2024-38207
was published
Aug 24, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43489
was published
Sep 19, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8904
was published
Sep 17, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to...
High
Unreviewed
CVE-2024-5158
was published
May 22, 2024
A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When...
Moderate
Unreviewed
CVE-2023-34967
was published
Jul 20, 2023
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8638
was published
Sep 11, 2024
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are...
High
Unreviewed
CVE-2024-45112
was published
Sep 13, 2024
A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an...
Critical
Unreviewed
CVE-2024-8385
was published
Sep 3, 2024
A potentially exploitable type confusion could be triggered when looking up a property name on an...
Critical
Unreviewed
CVE-2024-8381
was published
Sep 3, 2024
ProTip!
Advisories are also available from the
GraphQL API