Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

240 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-37377 was published Mar 29, 2023
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the... High Unreviewed
CVE-2023-1077 was published Mar 27, 2023
A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The... High Unreviewed
CVE-2023-1078 was published Mar 27, 2023
Type confusion in V8 in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to... High Unreviewed
CVE-2023-1214 was published Mar 8, 2023
Type confusion in CSS in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to... High Unreviewed
CVE-2023-1215 was published Mar 8, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2023-23529 was published Feb 27, 2023
Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to... High Unreviewed
CVE-2023-0696 was published Feb 7, 2023
Type confusion in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who... High Unreviewed
CVE-2023-0703 was published Feb 7, 2023
Type confusion in Data Transfer in Google Chrome prior to 110.0.5481.77 allowed a remote attacker... High Unreviewed
CVE-2023-0702 was published Feb 7, 2023
Type Confusion in ServiceWorker API in Google Chrome prior to 109.0.5414.119 allowed a remote... High Unreviewed
CVE-2023-0473 was published Jan 30, 2023
In Gitlab EE/CE before 15.6.1, 15.5.5 and 15.4.6 using a branch with a hexadecimal name could... High Unreviewed
CVE-2022-4205 was published Jan 28, 2023
In pinReplyNative of com_android_bluetooth_btservice_AdapterService.cpp, there is a possible out... High Unreviewed
CVE-2022-20461 was published Jan 26, 2023
Memory corruption in video driver due to type confusion error during video playback High Unreviewed
CVE-2022-25721 was published Jan 9, 2023
A type confusion issue was addressed with improved state handling. This issue is fixed in Safari... High Unreviewed
CVE-2022-42856 was published Dec 15, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey... High Unreviewed
CVE-2022-42841 was published Dec 15, 2022
Type confusion in V8 in Google Chrome prior to 108.0.5359.94 allowed a remote attacker to... High Unreviewed
CVE-2022-4262 was published Dec 2, 2022
Type confusion in V8 in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to... High Unreviewed
CVE-2022-4174 was published Nov 30, 2022
Type confusion in V8 in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to... High Unreviewed
CVE-2022-3889 was published Nov 9, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS... High Unreviewed
CVE-2022-42823 was published Nov 2, 2022
Type confusion in Blink in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to... High Unreviewed
CVE-2022-3315 was published Nov 2, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2022-32915 was published Nov 2, 2022
Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote attacker to... High Unreviewed
CVE-2022-3723 was published Nov 2, 2022
Type confusion in V8 in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to... High Unreviewed
CVE-2022-3652 was published Nov 2, 2022
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit... High Unreviewed
CVE-2022-2971 was published Sep 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database