Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

240 advisories

Loading
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... High Unreviewed
CVE-2017-0037 was published May 17, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ... High Unreviewed
CVE-2017-8291 was published May 14, 2022
Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X... High Unreviewed
CVE-2016-1015 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4223 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4224 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4225 was published May 14, 2022
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux,... High Unreviewed
CVE-2012-0752 was published May 14, 2022
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12... High Unreviewed
CVE-2011-0611 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing... High Unreviewed
CVE-2017-15860 was published May 13, 2022
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect... High Unreviewed
CVE-2017-14639 was published May 13, 2022
An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions:... High Unreviewed
CVE-2017-13220 was published May 13, 2022
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0... High Unreviewed
CVE-2010-2299 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6215 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6214 was published May 13, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2019-0752 was published May 13, 2022
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in... High Unreviewed
CVE-2018-8279 was published May 13, 2022
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe... High Unreviewed
CVE-2016-4149 was published May 13, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0... High Unreviewed
CVE-2017-5116 was published May 13, 2022
Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and... High Unreviewed
CVE-2017-5108 was published May 13, 2022
Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0... High Unreviewed
CVE-2017-5070 was published May 13, 2022
Type confusion in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and... High Unreviewed
CVE-2017-5059 was published May 13, 2022
Type confusion in PDFium in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and... High Unreviewed
CVE-2017-5057 was published May 13, 2022
Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure,... High Unreviewed
CVE-2017-11292 was published May 13, 2022
Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash... High Unreviewed
CVE-2022-30557 was published May 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database