Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20012 was published Feb 5, 2024
Vulnerable OpenSSL included in cryptography wheels High
CVE-2023-0286 was published for cryptography (pip) Feb 8, 2023
ehe9991
Type confusion in V8 in Google Chrome prior to 117.0.5938.149 allowed a remote attacker to... High Unreviewed
CVE-2023-5346 was published Oct 5, 2023
Type Confusion in Spellcheck in Google Chrome prior to 119.0.6045.199 allowed a remote attacker... High Unreviewed
CVE-2023-6348 was published Nov 29, 2023
Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to... High Unreviewed
CVE-2023-4069 was published Aug 3, 2023
Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to... High Unreviewed
CVE-2023-4068 was published Aug 3, 2023
Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to... High Unreviewed
CVE-2023-4070 was published Aug 3, 2023
Type Confusion in V8 in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to... High Unreviewed
CVE-2023-3420 was published Jun 26, 2023
Type confusion in V8 in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to... High Unreviewed
CVE-2023-3216 was published Jun 13, 2023
Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to... High Unreviewed
CVE-2023-2935 was published May 31, 2023
Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to... High Unreviewed
CVE-2023-2936 was published May 31, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2023-41075 was published Jan 11, 2024
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the... High Unreviewed
CVE-2023-1077 was published Mar 27, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2023-41060 was published Jan 11, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-6939 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23442 was published Dec 29, 2023
Microsoft Office Graphics Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38658 was published May 24, 2022
Raw Image Extension Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28466. High Unreviewed
CVE-2021-28468 was published May 24, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and... High Unreviewed
CVE-2023-32439 was published Jun 23, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23443 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51428 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51426 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51427 was published Dec 29, 2023
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
Type confusion in mpath Moderate
CVE-2021-23438 was published for mpath (npm) Sep 2, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database