Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

227 advisories

Loading
IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-11508 was published Nov 22, 2024
IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-11507 was published Nov 22, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.85 allowed a remote attacker to... High Unreviewed
CVE-2024-11395 was published Nov 19, 2024
In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of... High Unreviewed
CVE-2018-9339 was published Nov 19, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to... High Unreviewed
CVE-2024-10231 was published Oct 23, 2024
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to... High Unreviewed
CVE-2024-10230 was published Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return... High Unreviewed
CVE-2024-49860 was published Oct 21, 2024
Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 allowed a remote attacker... High Unreviewed
CVE-2024-9859 was published Oct 11, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to... High Unreviewed
CVE-2024-9602 was published Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to... High Unreviewed
CVE-2024-9603 was published Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform... High Unreviewed
CVE-2024-9122 was published Sep 25, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to... High Unreviewed
CVE-2024-8904 was published Sep 17, 2024
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are... High Unreviewed
CVE-2024-45112 was published Sep 13, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to... High Unreviewed
CVE-2024-8638 was published Sep 11, 2024
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server... High Unreviewed
CVE-2024-6119 was published Sep 3, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to... High Unreviewed
CVE-2024-8194 was published Aug 29, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38209 was published Aug 23, 2024
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit... High Unreviewed
CVE-2024-7971 was published Aug 21, 2024
Type Confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to... High Unreviewed
CVE-2024-7969 was published Aug 21, 2024
Scripting Engine Memory Corruption Vulnerability High Unreviewed
CVE-2024-38178 was published Aug 13, 2024
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to... High Unreviewed
CVE-2024-7550 was published Aug 6, 2024
A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code... High Unreviewed
CVE-2024-7520 was published Aug 6, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-40803 was published Jul 30, 2024
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6100 was published Jun 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database