Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,119
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

499 advisories

Loading
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42102 was published May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42074 was published May 3, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-38091 was published May 3, 2024
Prototype Pollution in immer Critical
CVE-2021-23436 was published for immer (npm) Sep 2, 2021
levpachmanov
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997... High Unreviewed
CVE-2024-25575 was published Apr 30, 2024
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21357 was published Feb 13, 2024
The cam_get_device_priv function does not check the type of handle being returned (device/session... High Unreviewed
CVE-2023-28575 was published Aug 8, 2023
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21363 was published Feb 13, 2024
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20662 was published Jan 9, 2024
Type Confusion in MathML in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to... High Unreviewed
CVE-2022-4912 was published Jul 29, 2023
Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type. Critical Unreviewed
CVE-2023-26063 was published Apr 10, 2023
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26232 was published Apr 9, 2024
Remote Procedure Call Runtime Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20678 was published Apr 9, 2024
eyre: Parts of Report are dropped as the wrong type during downcast High
GHSA-4v52-7q2x-v4xj was published for eyre (Rust) Apr 5, 2024
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro... High Unreviewed
CVE-2023-38128 was published Oct 19, 2023
Type confusion vulnerability in the distributed file module.Successful exploitation of this... High Unreviewed
CVE-2023-44108 was published Oct 11, 2023
Type confusion vulnerability in the distributed file module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-44094 was published Oct 11, 2023
In Macrob7 Macs Framework Content Management System (CMS) 1.1.4f, loose comparison in ... Critical Unreviewed
CVE-2023-43154 was published Sep 27, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.4 and... High Unreviewed
CVE-2023-32358 was published Aug 15, 2023
A type confusion issue was addressed with improved state handling. This issue is fixed in... High Unreviewed
CVE-2022-46706 was published Aug 15, 2023
In multiple locations, there is a possible code execution due to type confusion. This could lead... Critical Unreviewed
CVE-2023-21287 was published Aug 15, 2023
A type confusion vulnerability in Panasonic Control FPWIN Pro versions 7.6.0.3 and all previous... High Unreviewed
CVE-2023-28729 was published Jul 21, 2023
A type confusion vulnerability exists in the Javascript checkThisBox method as implemented in... High Unreviewed
CVE-2023-32664 was published Jul 19, 2023
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2023-36887 was published Jul 14, 2023
coreruleset (aka OWASP ModSecurity Core Rule Set) through 3.3.4 does not block multiple Content... Critical Unreviewed
CVE-2023-38199 was published Jul 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database