Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

217 advisories

Loading
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit... High Unreviewed
CVE-2022-2971 was published Sep 25, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS... High Unreviewed
CVE-2022-32814 was published Sep 25, 2022
Type confusion in V8 in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to... High Unreviewed
CVE-2022-2295 was published Jul 29, 2022
Type confusion in V8 in Google Chrome prior to 103.0.5060.53 allowed a remote attacker to... High Unreviewed
CVE-2022-2158 was published Jul 29, 2022
Type confusion in V8 Turbofan in Google Chrome prior to 100.0.4896.127 allowed a remote attacker... High Unreviewed
CVE-2022-1364 was published Jul 27, 2022
Type confusion in V8 in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to obtain... High Unreviewed
CVE-2022-1486 was published Jul 27, 2022
Type confusion in V8 in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to... High Unreviewed
CVE-2022-1314 was published Jul 26, 2022
Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to... High Unreviewed
CVE-2022-1232 was published Jul 26, 2022
Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to... High Unreviewed
CVE-2022-1134 was published Jul 24, 2022
Adobe Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 17.012... High Unreviewed
CVE-2022-34221 was published Jul 16, 2022
An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in... High Unreviewed
CVE-2022-34918 was published Jul 5, 2022
In the code that verifies the file size in the ark library, it is possible to manipulate the... High Unreviewed
CVE-2021-26635 was published Jun 3, 2022
Delta Electronics DIAScreen versions prior to 1.1.0 are vulnerable to type confusion, which may... High Unreviewed
CVE-2021-32965 was published May 25, 2022
A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF... High Unreviewed
CVE-2020-13547 was published May 24, 2022
An issue was discovered in Softing Industrial Automation uaToolkit Embedded before 1.40. Remote... High Unreviewed
CVE-2021-40872 was published May 24, 2022
An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66. Remote... High Unreviewed
CVE-2021-40871 was published May 24, 2022
Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker... High Unreviewed
CVE-2018-6122 was published May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14... High Unreviewed
CVE-2021-30818 was published May 24, 2022
Type confusion in Blink layout in Google Chrome prior to 93.0.4577.82 allowed a remote attacker... High Unreviewed
CVE-2021-30627 was published May 24, 2022
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017... High Unreviewed
CVE-2021-39841 was published May 24, 2022
Microsoft Office Graphics Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-38658 was published May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14... High Unreviewed
CVE-2021-30758 was published May 24, 2022
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute... High Unreviewed
CVE-2021-30598 was published May 24, 2022
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute... High Unreviewed
CVE-2021-30599 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database