Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

171 advisories

Loading
Possible out of bounds access due to improper input validation during graphics profiling in... High Unreviewed
CVE-2021-35105 was published Apr 2, 2022
Possible buffer overflow to improper validation of hash segment of file while allocating memory... High Unreviewed
CVE-2021-35110 was published Apr 2, 2022
Possible out of bounds read due to improper typecasting while handling page fault for global... High Unreviewed
CVE-2021-35091 was published Jun 15, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4709 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10... High Unreviewed
CVE-2016-7655 was published May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4710 was published May 17, 2022
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and... High Unreviewed
CVE-2017-2962 was published May 17, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
Memory corruption in display driver due to incorrect type casting while accessing the fence... High Unreviewed
CVE-2022-25715 was published Jan 9, 2023
Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon... High Unreviewed
CVE-2022-22102 was published Sep 3, 2022
An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt... High Unreviewed
CVE-2021-43537 was published Dec 9, 2021
A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to... High Unreviewed
CVE-2020-7081 was published May 24, 2022
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or... High Unreviewed
CVE-2020-16103 was published May 24, 2022
Incorrect pointer argument passed to trusted application TA could result in un-intended memory... High Unreviewed
CVE-2021-1923 was published May 24, 2022
A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a... High Unreviewed
CVE-2021-3578 was published Feb 17, 2022
An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049... High Unreviewed
CVE-2018-3843 was published May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-3106 was published May 13, 2022
In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This... High Unreviewed
CVE-2018-9568 was published May 13, 2022
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0... High Unreviewed
CVE-2010-1822 was published May 13, 2022
ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron... High Unreviewed
CVE-2018-8076 was published May 13, 2022
In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could... High Unreviewed
CVE-2018-15909 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9937 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9942 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9943 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9936 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database