Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,866
Erlang
36
GitHub Actions
36
Go
2,491
Maven
5,000+
npm
4,110
NuGet
735
pip
3,933
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

115 advisories

Loading
In ion, there is a possible out of bounds read due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20768 was published Jul 4, 2023
A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently... Moderate Unreviewed
CVE-2023-3022 was published Jun 19, 2023
In vcu, there is a possible memory corruption due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20747 was published Jun 6, 2023
In vcu, there is a possible memory corruption due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20673 was published May 16, 2023
In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a... Moderate Unreviewed
CVE-2019-19391 was published May 24, 2022
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user... Moderate Unreviewed
CVE-2023-4194 was published Aug 7, 2023
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20010 was published Feb 5, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20012 was published Feb 5, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-6939 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23442 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51428 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51426 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51427 was published Dec 29, 2023
Type confusion in mpath Moderate
CVE-2021-23438 was published for mpath (npm) Sep 2, 2021
In secmem, there is a possible memory corruption due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-32834 was published Nov 6, 2023
In keyinstall, there is a possible memory corruption due to type confusion. This could lead to... Moderate Unreviewed
CVE-2023-32835 was published Nov 6, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak... Moderate Unreviewed
CVE-2023-46705 was published Nov 20, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre... Moderate Unreviewed
CVE-2023-6045 was published Nov 20, 2023
In vdec, there is a possible out of bounds write due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-32818 was published Nov 6, 2023
Cross-site Scripting in edge.js Moderate
CVE-2021-23443 was published for edge.js (npm) Sep 22, 2021
Prototype Pollution in object-path Moderate
CVE-2021-23434 was published for object-path (npm) Sep 1, 2021
Windows Defender Credential Guard Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-34709 was published Aug 10, 2022
Lua 5.4.4 and 5.4.2 are affected by SEGV by type confusion in funcnamefromcode function in ldebug... Moderate Unreviewed
CVE-2021-44647 was published Jan 12, 2022
A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0... Moderate Unreviewed
CVE-2023-1076 was published Mar 27, 2023
cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a... Moderate Unreviewed
CVE-2023-23454 was published Jan 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database