Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,866
Erlang
36
GitHub Actions
36
Go
2,491
Maven
5,000+
npm
4,110
NuGet
735
pip
3,933
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

499 advisories

Loading
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a... Moderate Unreviewed
CVE-2019-17026 was published May 24, 2022
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in... High Unreviewed
CVE-2019-11707 was published May 24, 2022
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21408 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21342 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2025-21279 was published Feb 7, 2025
In checkKeyIntent of AccountManagerService.java, there is a possible way to bypass intent... High Unreviewed
CVE-2024-40676 was published Jan 28, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and... High Unreviewed
CVE-2023-32439 was published Jun 23, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3,... High Unreviewed
CVE-2025-24129 was published Jan 28, 2025
Type confusion in the Zoom Workplace App for Linux before 6.2.10 may allow an authorized user to... High Unreviewed
CVE-2025-0147 was published Jan 30, 2025
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to... High Unreviewed
CVE-2021-30563 was published May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS... High Unreviewed
CVE-2020-27932 was published May 24, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-8506 was published May 24, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4,... High Unreviewed
CVE-2025-24137 was published Jan 28, 2025
try/except* clauses could allow bypass RestrictedPython via type confusion bug in the CPython interpreter High
CVE-2025-22153 was published for RestrictedPython (pip) Jan 23, 2025
icemac Nico-Posada
dataflake tseaver
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21225 was published Jan 14, 2025
Internet Explorer Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21326 was published Jan 14, 2025
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security... Moderate Unreviewed
CVE-2024-13275 was published Jan 9, 2025
Windows Remote Desktop Services Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49119 was published Dec 12, 2024
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of... Moderate Unreviewed
CVE-2023-24599 was published May 29, 2023
Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution Low
CVE-2025-22151 was published for strawberry-graphql (pip) Jan 9, 2025
jamietdavidson bellini666
patrick91
While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic... High Unreviewed
CVE-2023-28162 was published Jun 2, 2023
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to... High Unreviewed
CVE-2024-12692 was published Dec 19, 2024
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to... High Unreviewed
CVE-2024-12053 was published Dec 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database