Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

436 advisories

Loading
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2022 was published Mar 11, 2025
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2015 was published Mar 11, 2025
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2018 was published Mar 11, 2025
Ashlar-Vellum Cobalt VC6 File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2016 was published Mar 11, 2025
Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to... High Unreviewed
CVE-2025-1920 was published Mar 10, 2025
Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to... High Unreviewed
CVE-2025-2135 was published Mar 10, 2025
jq v1.7.1 contains a stack-buffer-overflow in the decNumberCopy function within decNumber.c. High Unreviewed
CVE-2024-53427 was published Feb 26, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6. A possible type... Moderate Unreviewed
CVE-2024-37603 was published Feb 14, 2025
A type confusion vulnerability has been identified in the Postscript interpreter in various... High Unreviewed
CVE-2024-11344 was published Feb 13, 2025
: Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Lexmark... High Unreviewed
CVE-2024-11346 was published Feb 13, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21342 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21408 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2025-21279 was published Feb 7, 2025
Type confusion in the Zoom Workplace App for Linux before 6.2.10 may allow an authorized user to... High Unreviewed
CVE-2025-0147 was published Jan 30, 2025
In checkKeyIntent of AccountManagerService.java, there is a possible way to bypass intent... High Unreviewed
CVE-2024-40676 was published Jan 28, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4,... High Unreviewed
CVE-2025-24137 was published Jan 28, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3,... High Unreviewed
CVE-2025-24129 was published Jan 28, 2025
A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-54507 was published Jan 28, 2025
try/except* clauses could allow bypass RestrictedPython via type confusion bug in the CPython interpreter High
CVE-2025-22153 was published for RestrictedPython (pip) Jan 23, 2025
icemac Nico-Posada
dataflake tseaver
A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit... Critical Unreviewed
CVE-2024-24421 was published Jan 22, 2025
Internet Explorer Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21326 was published Jan 14, 2025
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21225 was published Jan 14, 2025
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security... Moderate Unreviewed
CVE-2024-13275 was published Jan 9, 2025
Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution Low
CVE-2025-22151 was published for strawberry-graphql (pip) Jan 9, 2025
jamietdavidson bellini666
patrick91
Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to... High Unreviewed
CVE-2025-0291 was published Jan 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database