Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,382
Maven
5,000+
npm
4,011
NuGet
720
pip
3,810
Pub
12
RubyGems
930
Rust
987
Swift
38
Unreviewed advisories
All unreviewed
5,000+

305 advisories

Loading
A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet... High Unreviewed
CVE-2025-7424 was published Jul 10, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an... High Unreviewed
CVE-2025-49702 was published Jul 8, 2025
Access of resource using incompatible type ('type confusion') in Windows SSDP Service allows an... High Unreviewed
CVE-2025-48815 was published Jul 8, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-49713 was published Jul 2, 2025
Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform... High Unreviewed
CVE-2025-6554 was published Jul 1, 2025
Type Confusion in V8 in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to... High Unreviewed
CVE-2025-5959 was published Jun 11, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an... High Unreviewed
CVE-2025-47167 was published Jun 10, 2025
An issue was discovered in the GPU in Samsung Mobile Processor Exynos 1480 and 2400. Type... High Unreviewed
CVE-2024-49196 was published May 27, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine... High Unreviewed
CVE-2025-30397 was published May 13, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an... High Unreviewed
CVE-2025-30383 was published May 13, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an... High Unreviewed
CVE-2025-30375 was published May 13, 2025
Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using... High Unreviewed
CVE-2025-30310 was published May 13, 2025
The vulnerability allows any attacker to cause the PeerTube server to stop functioning, or in... High Unreviewed
CVE-2025-32948 was published Apr 15, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an... High Unreviewed
CVE-2025-29791 was published Apr 8, 2025
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-25000 was published Apr 4, 2025
This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4,... High Unreviewed
CVE-2025-24213 was published Apr 1, 2025
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2022 was published Mar 11, 2025
Ashlar-Vellum Cobalt VC6 File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2016 was published Mar 11, 2025
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2015 was published Mar 11, 2025
Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-2018 was published Mar 11, 2025
Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to... High Unreviewed
CVE-2025-2135 was published Mar 10, 2025
Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to... High Unreviewed
CVE-2025-1920 was published Mar 10, 2025
jq v1.7.1 contains a stack-buffer-overflow in the decNumberCopy function within decNumber.c. High Unreviewed
CVE-2024-53427 was published Feb 26, 2025
: Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Lexmark... High Unreviewed
CVE-2024-11346 was published Feb 13, 2025
A type confusion vulnerability has been identified in the Postscript interpreter in various... High Unreviewed
CVE-2024-11344 was published Feb 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database