Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,744
Maven
5,000+
npm
4,341
NuGet
765
pip
4,113
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

532 advisories

Loading
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-40803 was published Jul 30, 2024
Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in... Moderate Unreviewed
CVE-2023-46842 was published May 16, 2024
Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to... High Unreviewed
CVE-2024-4058 was published May 1, 2024
In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return... High Unreviewed
CVE-2024-49860 was published Oct 21, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in iPadOS... Moderate Unreviewed
CVE-2024-54505 was published Dec 12, 2024
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15... Moderate Unreviewed
CVE-2024-54524 was published Dec 12, 2024
TCPDF has incorrect comparison High
CVE-2024-56522 was published for tecnickcom/tcpdf (Composer) Dec 27, 2024
A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS... Moderate Unreviewed
CVE-2025-43355 was published Sep 16, 2025
A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43297 was published Sep 16, 2025
This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4,... High Unreviewed
CVE-2025-24213 was published Apr 1, 2025
A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS... Moderate Unreviewed
CVE-2025-31206 was published May 13, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4,... High Unreviewed
CVE-2025-24137 was published Jan 28, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3,... High Unreviewed
CVE-2025-24129 was published Jan 28, 2025
In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a... Moderate Unreviewed
CVE-2019-19391 was published May 24, 2022
astral-tokio-tar Vulnerable to PAX Header Desynchronization High
CVE-2025-62518 was published for astral-tokio-tar (Rust) Oct 21, 2025
woodruffw tycho
azenla anners mnm678 zanieb
Credited to woodruffw, tycho, azenla, anners, mnm678, and zanieb
ChakraCore RCE Vulnerability High
CVE-2018-8298 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2016-7201 was published for Microsoft.ChakraCore (NuGet) May 14, 2022
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12... High Unreviewed
CVE-2011-0611 was published May 14, 2022
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7... High Unreviewed
CVE-2012-0507 was published May 4, 2022
Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to... High Unreviewed
CVE-2025-10585 was published Sep 24, 2025
Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform... High Unreviewed
CVE-2025-6554 was published Jul 1, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine... High Unreviewed
CVE-2025-30397 was published May 13, 2025
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit... High Unreviewed
CVE-2024-7971 was published Aug 21, 2024
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and... High Unreviewed
CVE-2023-32439 was published Jun 23, 2023
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to... High Unreviewed
CVE-2023-2033 was published Apr 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database