GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
207 advisories
Filter by severity
An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt...
High
Unreviewed
CVE-2021-43537
was published
Dec 9, 2021
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor...
High
Unreviewed
CVE-2021-39989
was published
Jan 4, 2022
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and...
High
Unreviewed
CVE-2021-30300
was published
Jan 14, 2022
A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a...
High
Unreviewed
CVE-2021-3578
was published
Feb 17, 2022
A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the...
Moderate
Unreviewed
CVE-2021-28275
was published
Mar 24, 2022
A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP...
Moderate
Unreviewed
CVE-2022-0322
was published
Mar 26, 2022
Possible out of bounds access due to improper input validation during graphics profiling in...
High
Unreviewed
CVE-2021-35105
was published
Apr 2, 2022
Possible buffer overflow to improper validation of hash segment of file while allocating memory...
High
Unreviewed
CVE-2021-35110
was published
Apr 2, 2022
An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049...
High
Unreviewed
CVE-2018-3843
was published
May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion...
High
Unreviewed
CVE-2017-3106
was published
May 13, 2022
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X...
Critical
Unreviewed
CVE-2016-6992
was published
May 13, 2022
Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion...
Critical
Unreviewed
CVE-2018-4944
was published
May 13, 2022
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions...
High
Unreviewed
CVE-2015-5219
was published
May 13, 2022
The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows...
Moderate
Unreviewed
CVE-2016-7156
was published
May 13, 2022
In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This...
High
Unreviewed
CVE-2018-9568
was published
May 13, 2022
WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0...
High
Unreviewed
CVE-2010-1822
was published
May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast...
Moderate
Unreviewed
CVE-2011-0482
was published
May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast...
Moderate
Unreviewed
CVE-2011-0483
was published
May 13, 2022
Google Chrome before 10.0.648.127 does not properly perform a cast of an unspecified variable...
Moderate
Unreviewed
CVE-2011-1200
was published
May 13, 2022
Google Chrome before 11.0.696.68 does not properly perform casts of variables during interaction...
Moderate
Unreviewed
CVE-2011-1799
was published
May 13, 2022
Google Chrome before 11.0.696.57 does not properly perform a cast of an unspecified variable...
Moderate
Unreviewed
CVE-2011-1441
was published
May 13, 2022
ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron...
High
Unreviewed
CVE-2018-8076
was published
May 13, 2022
Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable...
Moderate
Unreviewed
CVE-2011-3027
was published
May 13, 2022
Google Chrome before 17.0.963.65 does not properly perform a cast of an unspecified variable...
Moderate
Unreviewed
CVE-2011-3036
was published
May 13, 2022
Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables during...
Moderate
Unreviewed
CVE-2011-3037
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API