Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,111
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

362 advisories

Loading
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and... High Unreviewed
CVE-2023-32439 was published Jun 23, 2023
A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3,... High Unreviewed
CVE-2025-24129 was published Jan 28, 2025
Type confusion in the Zoom Workplace App for Linux before 6.2.10 may allow an authorized user to... High Unreviewed
CVE-2025-0147 was published Jan 30, 2025
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to... High Unreviewed
CVE-2021-30563 was published May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS... High Unreviewed
CVE-2020-27932 was published May 24, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-8506 was published May 24, 2022
A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4,... High Unreviewed
CVE-2025-24137 was published Jan 28, 2025
A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit... Critical Unreviewed
CVE-2024-24421 was published Jan 22, 2025
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21225 was published Jan 14, 2025
Internet Explorer Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21326 was published Jan 14, 2025
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security... Moderate Unreviewed
CVE-2024-13275 was published Jan 9, 2025
Windows Remote Desktop Services Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49119 was published Dec 12, 2024
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of... Moderate Unreviewed
CVE-2023-24599 was published May 29, 2023
While implementing AudioWorklets, some code may have casted one type to another, invalid, dynamic... High Unreviewed
CVE-2023-28162 was published Jun 2, 2023
Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to... High Unreviewed
CVE-2025-0291 was published Jan 8, 2025
Microsoft Edge (HTML-based) Memory Corruption Vulnerability High Unreviewed
CVE-2024-38218 was published Aug 12, 2024
Type Confusion in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to... High Unreviewed
CVE-2024-12692 was published Dec 19, 2024
Windows COM+ Event System Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41033 was published Oct 12, 2022
Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to... High Unreviewed
CVE-2024-12053 was published Dec 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-13049 was published Dec 30, 2024
Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-13047 was published Dec 30, 2024
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12834 was published Dec 30, 2024
Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-12836 was published Dec 30, 2024
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker... High Unreviewed
CVE-2024-2887 was published Mar 26, 2024
In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to... Critical Unreviewed
CVE-2018-9471 was published Nov 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database