GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
227 advisories
Filter by severity
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...
High
Unreviewed
CVE-2018-4953
was published
May 14, 2022
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to...
High
Unreviewed
CVE-2018-5817
was published
May 14, 2022
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable...
High
Unreviewed
CVE-2016-7865
was published
May 14, 2022
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable...
High
Unreviewed
CVE-2016-7861
was published
May 14, 2022
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable...
High
Unreviewed
CVE-2016-7860
was published
May 14, 2022
Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0...
High
Unreviewed
CVE-2018-6064
was published
May 14, 2022
psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended...
High
Unreviewed
CVE-2018-19477
was published
May 14, 2022
psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access...
High
Unreviewed
CVE-2018-19476
was published
May 14, 2022
drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to...
Low
Unreviewed
CVE-2018-18386
was published
May 14, 2022
An incorrect object type assumption in SVG in Google Chrome prior to 72.0.3626.81 allowed a...
High
Unreviewed
CVE-2019-5757
was published
May 14, 2022
A type confusion issue was addressed with improved memory handling. This issue affected versions...
High
Unreviewed
CVE-2018-4284
was published
May 14, 2022
A type confusion issue was addressed with improved memory handling. This issue affected versions...
High
Unreviewed
CVE-2018-4285
was published
May 14, 2022
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and...
High
Unreviewed
CVE-2017-11257
was published
May 14, 2022
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and...
High
Unreviewed
CVE-2017-11221
was published
May 14, 2022
An issue was discovered in Artifex Ghostscript before 9.24. A type confusion in "ztype" could be...
High
Unreviewed
CVE-2018-16511
was published
May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10...
Moderate
Unreviewed
CVE-2017-13855
was published
May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11...
High
Unreviewed
CVE-2018-4246
was published
May 14, 2022
Adobe Flash Player versions 29.0.0.171 and earlier have a Type Confusion vulnerability....
High
Unreviewed
CVE-2018-4945
was published
May 14, 2022
A Type Confusion (CWE-843) vulnerability exists in Eurotherm by Schneider Electric GUIcon V2.0 ...
High
Unreviewed
CVE-2018-7815
was published
May 14, 2022
A Type Confusion (CWE-843) vulnerability exists in Eurotherm by Schneider Electric GUIcon V2.0 ...
High
Unreviewed
CVE-2018-7813
was published
May 14, 2022
Type confusion in ReadableStreams in Blink in Google Chrome prior to 67.0.3396.62 allowed a...
High
Unreviewed
CVE-2018-6124
was published
May 14, 2022
Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior to 64.0.3282...
High
Unreviewed
CVE-2018-6056
was published
May 14, 2022
In iOS before 11.2, a type confusion issue was addressed with improved memory handling.
High
Unreviewed
CVE-2017-13888
was published
May 14, 2022
In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain...
High
Unreviewed
CVE-2018-19134
was published
May 14, 2022
In CollectValuesOrEntriesImpl of elements.cc, there is possible remote code execution due to type...
High
Unreviewed
CVE-2018-9490
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API