Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

227 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9943 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9937 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9942 was published May 13, 2022
In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could... High Unreviewed
CVE-2018-15909 was published May 13, 2022
Google Chrome before 17.0.963.65 does not properly perform a cast of an unspecified variable... Moderate Unreviewed
CVE-2011-3036 was published May 13, 2022
Google Chrome before 11.0.696.57 does not properly perform a cast of an unspecified variable... Moderate Unreviewed
CVE-2011-1441 was published May 13, 2022
Google Chrome before 10.0.648.127 does not properly perform a cast of an unspecified variable... Moderate Unreviewed
CVE-2011-1200 was published May 13, 2022
ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron... High Unreviewed
CVE-2018-8076 was published May 13, 2022
Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable... Moderate Unreviewed
CVE-2011-3027 was published May 13, 2022
Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables during... Moderate Unreviewed
CVE-2011-3037 was published May 13, 2022
Google Chrome before 11.0.696.68 does not properly perform casts of variables during interaction... Moderate Unreviewed
CVE-2011-1799 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed
CVE-2011-0483 was published May 13, 2022
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0... High Unreviewed
CVE-2010-1822 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed
CVE-2011-0482 was published May 13, 2022
Incorrect cast in anymap Critical
CVE-2021-38187 was published for anymap (Rust) Aug 25, 2021
In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This... High Unreviewed
CVE-2018-9568 was published May 13, 2022
The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2016-7156 was published May 13, 2022
`CHECK` fail in `BCast` overflow Moderate
CVE-2022-41890 was published for tensorflow (pip) Nov 21, 2022
Invalid char to bool conversion when printing a tensor Moderate
CVE-2022-41911 was published for tensorflow (pip) Nov 21, 2022
Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion... Critical Unreviewed
CVE-2018-4944 was published May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-3106 was published May 13, 2022
An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049... High Unreviewed
CVE-2018-3843 was published May 13, 2022
A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a... High Unreviewed
CVE-2021-3578 was published Feb 17, 2022
Incorrect pointer argument passed to trusted application TA could result in un-intended memory... High Unreviewed
CVE-2021-1923 was published May 24, 2022
A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the... Moderate Unreviewed
CVE-2021-28275 was published Mar 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database