GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,485

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

206 advisories

Filter by severity

Sort by

Least recently updated

An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt... High Unreviewed

CVE-2021-43537 was published Dec 9, 2021

The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor... High Unreviewed

CVE-2021-39989 was published Jan 4, 2022

Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and... High Unreviewed

CVE-2021-30300 was published Jan 14, 2022

A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a... High Unreviewed

CVE-2021-3578 was published Feb 17, 2022

A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the... Moderate Unreviewed

CVE-2021-28275 was published Mar 24, 2022

A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP... Moderate Unreviewed

CVE-2022-0322 was published Mar 26, 2022

Possible buffer overflow to improper validation of hash segment of file while allocating memory... High Unreviewed

CVE-2021-35110 was published Apr 2, 2022

Possible out of bounds access due to improper input validation during graphics profiling in... High Unreviewed

CVE-2021-35105 was published Apr 2, 2022

An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049... High Unreviewed

CVE-2018-3843 was published May 13, 2022

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion... High Unreviewed

CVE-2017-3106 was published May 13, 2022

Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X... Critical Unreviewed

CVE-2016-6992 was published May 13, 2022

Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion... Critical Unreviewed

CVE-2018-4944 was published May 13, 2022

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions... High Unreviewed

CVE-2015-5219 was published May 13, 2022

The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed

CVE-2016-7156 was published May 13, 2022

In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This... High Unreviewed

CVE-2018-9568 was published May 13, 2022

WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0... High Unreviewed

CVE-2010-1822 was published May 13, 2022

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed

CVE-2011-0482 was published May 13, 2022

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed

CVE-2011-0483 was published May 13, 2022

Google Chrome before 10.0.648.127 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-1200 was published May 13, 2022

Google Chrome before 11.0.696.68 does not properly perform casts of variables during interaction... Moderate Unreviewed

CVE-2011-1799 was published May 13, 2022

Google Chrome before 11.0.696.57 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-1441 was published May 13, 2022

ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron... High Unreviewed

CVE-2018-8076 was published May 13, 2022

Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-3027 was published May 13, 2022

Google Chrome before 17.0.963.65 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-3036 was published May 13, 2022

Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables during... Moderate Unreviewed

CVE-2011-3037 was published May 13, 2022

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

206 advisories