GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
76 advisories
Filter by severity
In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to...
Moderate
Unreviewed
CVE-2024-20106
was published
Nov 4, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43596
was published
Oct 18, 2024
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot...
Moderate
Unreviewed
CVE-2024-7824
was published
Oct 3, 2024
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot...
Moderate
Unreviewed
CVE-2024-7825
was published
Oct 3, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43489
was published
Sep 19, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
Moderate
Unreviewed
CVE-2024-38207
was published
Aug 24, 2024
In shouldWrite of OwnersData.java, there is a possible edge case that prevents MDM policies from...
Moderate
Unreviewed
CVE-2024-34742
was published
Aug 16, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-38219
was published
Aug 12, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 16...
Moderate
Unreviewed
CVE-2024-40788
was published
Jul 30, 2024
Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a...
Moderate
Unreviewed
CVE-2024-5843
was published
Jun 11, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30034
was published
May 14, 2024
In TBD of TBD, there is a possible confusion of OEM and DRM certificates due to improperly used...
Moderate
Unreviewed
CVE-2024-0042
was published
May 7, 2024
marshall in dhcp_packet.c in simple-dhcp-server through ec976d2 allows remote attackers to cause...
Moderate
Unreviewed
CVE-2023-50433
was published
Apr 30, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead...
Moderate
Unreviewed
CVE-2024-20010
was published
Feb 5, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead...
Moderate
Unreviewed
CVE-2024-20012
was published
Feb 5, 2024
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-20662
was published
Jan 9, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-6939
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-51427
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-51428
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-23442
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-51426
was published
Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could...
Moderate
Unreviewed
CVE-2023-23443
was published
Dec 29, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak...
Moderate
Unreviewed
CVE-2023-46705
was published
Nov 20, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre...
Moderate
Unreviewed
CVE-2023-6045
was published
Nov 20, 2023
In keyinstall, there is a possible memory corruption due to type confusion. This could lead to...
Moderate
Unreviewed
CVE-2023-32835
was published
Nov 6, 2023
ProTip!
Advisories are also available from the
GraphQL API