Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

223 advisories

Loading
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to... High Unreviewed
CVE-2024-10230 was published Oct 23, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to... High Unreviewed
CVE-2024-10231 was published Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return... High Unreviewed
CVE-2024-49860 was published Oct 21, 2024
Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 allowed a remote attacker... High Unreviewed
CVE-2024-9859 was published Oct 11, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to... High Unreviewed
CVE-2024-9603 was published Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to... High Unreviewed
CVE-2024-9602 was published Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform... High Unreviewed
CVE-2024-9122 was published Sep 25, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to... High Unreviewed
CVE-2024-8904 was published Sep 17, 2024
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are... High Unreviewed
CVE-2024-45112 was published Sep 13, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to... High Unreviewed
CVE-2024-8638 was published Sep 11, 2024
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server... High Unreviewed
CVE-2024-6119 was published Sep 3, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to... High Unreviewed
CVE-2024-8194 was published Aug 29, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38209 was published Aug 23, 2024
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit... High Unreviewed
CVE-2024-7971 was published Aug 21, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to... High Unreviewed
CVE-2024-7969 was published Aug 21, 2024
Scripting Engine Memory Corruption Vulnerability High Unreviewed
CVE-2024-38178 was published Aug 13, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to... High Unreviewed
CVE-2024-7550 was published Aug 6, 2024
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code... High Unreviewed
CVE-2024-7520 was published Aug 6, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-40803 was published Jul 30, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6100 was published Jun 20, 2024
In lwis_add_completion_fence of lwis_fence.c, there is a possible escalation of privilege due to... High Unreviewed
CVE-2024-32919 was published Jun 13, 2024
In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected... High Unreviewed
CVE-2024-32922 was published Jun 13, 2024
In handle_init of goodix/main/main.c, there is a possible memory corruption due to type confusion... High Unreviewed
CVE-2024-32892 was published Jun 13, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform... High Unreviewed
CVE-2024-5838 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database