GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
27 advisories
Filter by severity
A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an...
Critical
Unreviewed
CVE-2024-8385
was published
Sep 3, 2024
A potentially exploitable type confusion could be triggered when looking up a property name on an...
Critical
Unreviewed
CVE-2024-8381
was published
Sep 3, 2024
In venc, there is a possible out of bounds write due to type confusion. This could lead to local...
Critical
Unreviewed
CVE-2024-20078
was published
Jul 1, 2024
In Macrob7 Macs Framework Content Management System (CMS) 1.1.4f, loose comparison in ...
Critical
Unreviewed
CVE-2023-43154
was published
Sep 27, 2023
A Type Confusion vulnerability was found in the Spotlight RPC functions in afpd in Netatalk 3.1.x...
Critical
Unreviewed
CVE-2023-42464
was published
Sep 20, 2023
In multiple locations, there is a possible code execution due to type confusion. This could lead...
Critical
Unreviewed
CVE-2023-21287
was published
Aug 15, 2023
coreruleset (aka OWASP ModSecurity Core Rule Set) through 3.3.4 does not block multiple Content...
Critical
Unreviewed
CVE-2023-38199
was published
Jul 13, 2023
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions....
Critical
Unreviewed
CVE-2022-48511
was published
Jul 6, 2023
An error in Hermes' algorithm for copying objects properties prior to commit...
Critical
Unreviewed
CVE-2023-23557
was published
May 19, 2023
A type confusion bug in TypedArray prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could...
Critical
Unreviewed
CVE-2023-25933
was published
May 19, 2023
Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate...
Critical
Unreviewed
CVE-2021-33970
was published
Apr 20, 2023
Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type.
Critical
Unreviewed
CVE-2023-26063
was published
Apr 10, 2023
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS...
Critical
Unreviewed
CVE-2021-1829
was published
May 24, 2022
An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz...
Critical
Unreviewed
CVE-2021-23908
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7970
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7969
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7971
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7972
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7973
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7974
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7975
was published
May 24, 2022
The type inference system allows the compilation of functions that can cause type confusions...
Critical
Unreviewed
CVE-2019-9791
was published
May 24, 2022
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion...
Critical
Unreviewed
CVE-2018-4920
was published
May 14, 2022
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of...
Critical
Unreviewed
CVE-2019-10231
was published
May 13, 2022
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X...
Critical
Unreviewed
CVE-2016-6992
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API