GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
184 advisories
Filter by severity
Swift-corelibs-foundation denial of service in JSON decoding with JSONDecoder
High
CVE-2022-1642
was published
for
github.com/apple/swift-corelibs-foundation
(Swift)
Jun 7, 2023
os_str_bytes relies on undefined behavior of `char::from_u32_unchecked`
High
CVE-2020-35865
was published
for
os_str_bytes
(Rust)
Aug 25, 2021
Dangling reference in flatbuffers
High
CVE-2020-35864
was published
for
flatbuffers
(Rust)
Aug 25, 2021
In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte...
High
Unreviewed
CVE-2022-32547
was published
Jun 17, 2022
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and...
High
Unreviewed
CVE-2021-30300
was published
Jan 14, 2022
MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a...
High
Unreviewed
CVE-2018-14379
was published
May 13, 2022
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID...
High
Unreviewed
CVE-2022-40531
was published
Mar 10, 2023
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions...
High
Unreviewed
CVE-2015-5219
was published
May 13, 2022
A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local...
High
Unreviewed
CVE-2022-41668
was published
Nov 4, 2022
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor...
High
Unreviewed
CVE-2021-39989
was published
Jan 4, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue...
High
Unreviewed
CVE-2016-7617
was published
May 17, 2022
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which...
High
Unreviewed
CVE-2017-9042
was published
May 17, 2022
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X...
High
Unreviewed
CVE-2015-3120
was published
May 17, 2022
Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB...
High
Unreviewed
CVE-2017-8159
was published
May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017...
High
Unreviewed
CVE-2017-16379
was published
May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017...
High
Unreviewed
CVE-2017-16367
was published
May 17, 2022
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged...
High
Unreviewed
CVE-2017-5717
was published
May 14, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker...
High
Unreviewed
CVE-2017-5115
was published
May 14, 2022
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to...
High
Unreviewed
CVE-2016-8602
was published
May 14, 2022
A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a...
High
Unreviewed
CVE-2018-6480
was published
May 14, 2022
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue...
High
Unreviewed
CVE-2018-4219
was published
May 14, 2022
An issue was discovered in Foxit Reader before 9.1 and PhantomPDF before 9.1. This vulnerability...
High
Unreviewed
CVE-2018-7407
was published
May 14, 2022
Adobe Flash Player 30.0.0.113 and earlier versions have a Type Confusion vulnerability....
High
Unreviewed
CVE-2018-5007
was published
May 14, 2022
Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0...
High
Unreviewed
CVE-2018-12453
was published
May 14, 2022
The EditingStyle::mergeStyle function in WebKit/Source/core/editing/EditingStyle.cpp in Blink, as...
High
Unreviewed
CVE-2016-5161
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API