Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,815
Erlang
36
GitHub Actions
32
Go
2,401
Maven
5,000+
npm
4,044
NuGet
723
pip
3,830
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

187 advisories

Loading
In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain... High Unreviewed
CVE-2018-19134 was published May 14, 2022
In CollectValuesOrEntriesImpl of elements.cc, there is possible remote code execution due to type... High Unreviewed
CVE-2018-9490 was published May 14, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-5861 was published May 14, 2022
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an... High Unreviewed
CVE-2018-12386 was published May 14, 2022
The EditingStyle::mergeStyle function in WebKit/Source/core/editing/EditingStyle.cpp in Blink, as... High Unreviewed
CVE-2016-5161 was published May 14, 2022
Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote... High Unreviewed
CVE-2017-15413 was published May 14, 2022
Adobe Flash Player 30.0.0.113 and earlier versions have a Type Confusion vulnerability.... High Unreviewed
CVE-2018-5007 was published May 14, 2022
Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0... High Unreviewed
CVE-2018-12453 was published May 14, 2022
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue... High Unreviewed
CVE-2018-4219 was published May 14, 2022
An issue was discovered in Foxit Reader before 9.1 and PhantomPDF before 9.1. This vulnerability... High Unreviewed
CVE-2018-7407 was published May 14, 2022
A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a... High Unreviewed
CVE-2018-6480 was published May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ... High Unreviewed
CVE-2017-8291 was published May 14, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to... High Unreviewed
CVE-2016-8602 was published May 14, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker... High Unreviewed
CVE-2017-5115 was published May 14, 2022
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged... High Unreviewed
CVE-2017-5717 was published May 14, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16379 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16367 was published May 17, 2022
Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB... High Unreviewed
CVE-2017-8159 was published May 17, 2022
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... High Unreviewed
CVE-2017-0037 was published May 17, 2022
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X... High Unreviewed
CVE-2015-3120 was published May 17, 2022
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which... High Unreviewed
CVE-2017-9042 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... High Unreviewed
CVE-2016-7617 was published May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4709 was published May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4710 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database