Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

358 advisories

Loading
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21225 was published Jan 14, 2025
Internet Explorer Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21326 was published Jan 14, 2025
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security... Moderate Unreviewed
CVE-2024-13275 was published Jan 9, 2025
Windows Remote Desktop Services Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49119 was published Dec 12, 2024
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of... Moderate Unreviewed
CVE-2023-24599 was published May 29, 2023
While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic... High Unreviewed
CVE-2023-28162 was published Jun 2, 2023
Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to... High Unreviewed
CVE-2025-0291 was published Jan 8, 2025
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to... High Unreviewed
CVE-2024-12692 was published Dec 19, 2024
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to... High Unreviewed
CVE-2024-12053 was published Dec 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-13049 was published Dec 30, 2024
Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-13047 was published Dec 30, 2024
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12834 was published Dec 30, 2024
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12836 was published Dec 30, 2024
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker... High Unreviewed
CVE-2024-2887 was published Mar 26, 2024
In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to... Critical Unreviewed
CVE-2018-9471 was published Nov 20, 2024
A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena... Moderate Unreviewed
CVE-2019-13519 was published May 24, 2022
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2023-49602 was published Mar 4, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in iPadOS... Moderate Unreviewed
CVE-2024-54505 was published Dec 12, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to... High Unreviewed
CVE-2024-12381 was published Dec 12, 2024
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15... Moderate Unreviewed
CVE-2024-54524 was published Dec 12, 2024
Type Confusion in V8 in Google Chrome prior to 122.0.6261.94 allowed a remote attacker to... High Unreviewed
CVE-2024-1938 was published Feb 29, 2024
Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in... Moderate Unreviewed
CVE-2023-46842 was published May 16, 2024
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit... High Unreviewed
CVE-2024-7971 was published Aug 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database