Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

319 advisories

Loading
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43489 was published Sep 19, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to... High Unreviewed
CVE-2024-8904 was published Sep 17, 2024
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are... High Unreviewed
CVE-2024-45112 was published Sep 13, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to... High Unreviewed
CVE-2024-8638 was published Sep 11, 2024
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server... High Unreviewed
CVE-2024-6119 was published Sep 3, 2024
A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an... Critical Unreviewed
CVE-2024-8385 was published Sep 3, 2024
A potentially exploitable type confusion could be triggered when looking up a property name on an... Critical Unreviewed
CVE-2024-8381 was published Sep 3, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to... High Unreviewed
CVE-2024-8194 was published Aug 29, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability Moderate Unreviewed
CVE-2024-38207 was published Aug 24, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38209 was published Aug 23, 2024
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit... High Unreviewed
CVE-2024-7971 was published Aug 21, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to... High Unreviewed
CVE-2024-7969 was published Aug 21, 2024
Scripting Engine Memory Corruption Vulnerability High Unreviewed
CVE-2024-38178 was published Aug 13, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-38219 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to... High Unreviewed
CVE-2024-7550 was published Aug 6, 2024
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code... High Unreviewed
CVE-2024-7520 was published Aug 6, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-40803 was published Jul 30, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 16... Moderate Unreviewed
CVE-2024-40788 was published Jul 30, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2024-36278 was published Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2024-31071 was published Jul 2, 2024
In venc, there is a possible out of bounds write due to type confusion. This could lead to local... Critical Unreviewed
CVE-2024-20078 was published Jul 1, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6100 was published Jun 20, 2024
In lwis_add_completion_fence of lwis_fence.c, there is a possible escalation of privilege due to... High Unreviewed
CVE-2024-32919 was published Jun 13, 2024
In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected... High Unreviewed
CVE-2024-32922 was published Jun 13, 2024
ProTip! Advisories are also available from the GraphQL API