Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

234 advisories

Loading
libxmljs vulnerable to type confusion when parsing specially crafted XML High
CVE-2024-34391 was published for libxmljs (npm) May 2, 2024
Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-38091 was published May 3, 2024
PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42074 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42102 was published May 3, 2024
Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-42105 was published May 3, 2024
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-51560 was published May 3, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32057 was published May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32063 was published May 14, 2024
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27... High Unreviewed
CVE-2024-32062 was published May 14, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute... High Unreviewed
CVE-2024-4947 was published May 15, 2024
Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to... High Unreviewed
CVE-2024-5158 was published May 22, 2024
Fuji Electric Monitouch V-SFT is vulnerable to a type confusion, which could cause a crash or... High Unreviewed
CVE-2024-5597 was published Jun 10, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5833 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform... High Unreviewed
CVE-2024-5830 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform... High Unreviewed
CVE-2024-5838 was published Jun 11, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5837 was published Jun 11, 2024
In handle_init of goodix/main/main.c, there is a possible memory corruption due to type confusion... High Unreviewed
CVE-2024-32892 was published Jun 13, 2024
In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected... High Unreviewed
CVE-2024-32922 was published Jun 13, 2024
In lwis_add_completion_fence of lwis_fence.c, there is a possible escalation of privilege due to... High Unreviewed
CVE-2024-32919 was published Jun 13, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6100 was published Jun 20, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-40803 was published Jul 30, 2024
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code... High Unreviewed
CVE-2024-7520 was published Aug 6, 2024
Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to... High Unreviewed
CVE-2024-7550 was published Aug 6, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Scripting Engine Memory Corruption Vulnerability High Unreviewed
CVE-2024-38178 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database