GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
227 advisories
Filter by severity
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that...
High
Unreviewed
CVE-2016-4710
was published
May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that...
High
Unreviewed
CVE-2016-4709
was published
May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue...
High
Unreviewed
CVE-2016-7617
was published
May 17, 2022
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which...
High
Unreviewed
CVE-2017-9042
was published
May 17, 2022
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X...
High
Unreviewed
CVE-2015-3120
was published
May 17, 2022
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the...
High
Unreviewed
CVE-2017-0037
was published
May 17, 2022
Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB...
High
Unreviewed
CVE-2017-8159
was published
May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017...
High
Unreviewed
CVE-2017-16367
was published
May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017...
High
Unreviewed
CVE-2017-16379
was published
May 17, 2022
Improper Input Validation in IpMatcher
Critical
CVE-2021-33318
was published
for
IpMatcher
(NuGet)
May 17, 2022
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged...
High
Unreviewed
CVE-2017-5717
was published
May 14, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker...
High
Unreviewed
CVE-2017-5115
was published
May 14, 2022
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection...
Critical
Unreviewed
CVE-2016-7979
was published
May 14, 2022
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to...
High
Unreviewed
CVE-2016-8602
was published
May 14, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion...
High
Unreviewed
CVE-2017-2995
was published
May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ...
High
Unreviewed
CVE-2017-8291
was published
May 14, 2022
A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a...
High
Unreviewed
CVE-2018-6480
was published
May 14, 2022
An issue was discovered in Foxit Reader before 9.1 and PhantomPDF before 9.1. This vulnerability...
High
Unreviewed
CVE-2018-7407
was published
May 14, 2022
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion...
Critical
Unreviewed
CVE-2018-4920
was published
May 14, 2022
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue...
High
Unreviewed
CVE-2018-4219
was published
May 14, 2022
Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0...
High
Unreviewed
CVE-2018-12453
was published
May 14, 2022
Adobe Flash Player 30.0.0.113 and earlier versions have a Type Confusion vulnerability....
High
Unreviewed
CVE-2018-5007
was published
May 14, 2022
Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote...
High
Unreviewed
CVE-2017-15413
was published
May 14, 2022
The EditingStyle::mergeStyle function in WebKit/Source/core/editing/EditingStyle.cpp in Blink, as...
High
Unreviewed
CVE-2016-5161
was published
May 14, 2022
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an...
High
Unreviewed
CVE-2018-12386
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API