Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

360 advisories

Loading
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of... Moderate Unreviewed
CVE-2023-24599 was published May 29, 2023
A type confusion bug in TypedArray prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could... Critical Unreviewed
CVE-2023-25933 was published May 19, 2023
An error in Hermes' algorithm for copying objects properties prior to commit... Critical Unreviewed
CVE-2023-23557 was published May 19, 2023
Type confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to... High Unreviewed
CVE-2023-2724 was published May 16, 2023
In vcu, there is a possible memory corruption due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20673 was published May 16, 2023
Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate... Critical Unreviewed
CVE-2021-33970 was published Apr 20, 2023
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to... High Unreviewed
CVE-2023-2033 was published Apr 14, 2023
An issue was discovered in Treasure Data Fluent Bit 1.7.1, erroneous parsing in... High Unreviewed
CVE-2021-46878 was published Apr 11, 2023
Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type. Critical Unreviewed
CVE-2023-26063 was published Apr 10, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-37377 was published Mar 29, 2023
A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0... Moderate Unreviewed
CVE-2023-1076 was published Mar 27, 2023
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the... High Unreviewed
CVE-2023-1077 was published Mar 27, 2023
A flaw was found in the Linux Kernel. The tls_is_tx_ready() incorrectly checks for list emptiness... Low Unreviewed
CVE-2023-1075 was published Mar 27, 2023
A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The... High Unreviewed
CVE-2023-1078 was published Mar 27, 2023
In lwis_slc_buffer_free of lwis_device_slc.c, there is a possible memory corruption due to type... Moderate Unreviewed
CVE-2023-21056 was published Mar 24, 2023
The ArKUI framework subsystem within OpenHarmony-v3.1.5 and prior versions, OpenHarmony-v3.0.7... Moderate Unreviewed
CVE-2023-0083 was published Mar 10, 2023
Type confusion in DevTools in Google Chrome prior to 111.0.5563.64 allowed a remote attacker who... Moderate Unreviewed
CVE-2023-1235 was published Mar 8, 2023
Type confusion in V8 in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to... High Unreviewed
CVE-2023-1214 was published Mar 8, 2023
Type confusion in CSS in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to... High Unreviewed
CVE-2023-1215 was published Mar 8, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2023-23529 was published Feb 27, 2023
Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to... High Unreviewed
CVE-2023-0696 was published Feb 7, 2023
Type confusion in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who... High Unreviewed
CVE-2023-0703 was published Feb 7, 2023
Type confusion in Data Transfer in Google Chrome prior to 110.0.5481.77 allowed a remote attacker... High Unreviewed
CVE-2023-0702 was published Feb 7, 2023
In ion, there is a possible out of bounds read due to type confusion. This could lead to local... Moderate Unreviewed
CVE-2023-20616 was published Feb 6, 2023
Type Confusion in ServiceWorker API in Google Chrome prior to 109.0.5414.119 allowed a remote... High Unreviewed
CVE-2023-0473 was published Jan 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database