Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

70 advisories

Loading
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43489 was published Sep 19, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability Moderate Unreviewed
CVE-2024-38207 was published Aug 24, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-38219 was published Aug 12, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 16... Moderate Unreviewed
CVE-2024-40788 was published Jul 30, 2024
Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a... Moderate Unreviewed
CVE-2024-5843 was published Jun 11, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30034 was published May 14, 2024
In TBD of TBD, there is a possible confusion of OEM and DRM certificates due to improperly used... Moderate Unreviewed
CVE-2024-0042 was published May 7, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20012 was published Feb 5, 2024
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead... Moderate Unreviewed
CVE-2024-20010 was published Feb 5, 2024
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20662 was published Jan 9, 2024
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-6939 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51427 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23442 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51426 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-51428 was published Dec 29, 2023
Some Honor products are affected by type confusion vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2023-23443 was published Dec 29, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre... Moderate Unreviewed
CVE-2023-6045 was published Nov 20, 2023
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak... Moderate Unreviewed
CVE-2023-46705 was published Nov 20, 2023
In vdec, there is a possible out of bounds write due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-32818 was published Nov 6, 2023
In secmem, there is a possible memory corruption due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-32834 was published Nov 6, 2023
In keyinstall, there is a possible memory corruption due to type confusion. This could lead to... Moderate Unreviewed
CVE-2023-32835 was published Nov 6, 2023
Type confusion vulnerability in the distributed file module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-44094 was published Oct 11, 2023
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user... Moderate Unreviewed
CVE-2023-4194 was published Aug 7, 2023
A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When... Moderate Unreviewed
CVE-2023-34967 was published Jul 20, 2023
In ion, there is a possible out of bounds read due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20768 was published Jul 4, 2023
ProTip! Advisories are also available from the GraphQL API