Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

509 advisories

Loading
IBM System Management for i 7.2, 7.3, and 7.4 could allow a local user to gain elevated... High Unreviewed
CVE-2024-38330 was published Jul 8, 2024
Uncontrolled Search Path Element vulnerability in ICONICS GENESIS64 all versions, Mitsubishi... High Unreviewed
CVE-2024-1182 was published Jul 4, 2024
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in... High Unreviewed
CVE-2024-33672 was published Apr 26, 2024
A potential DLL hijacking vulnerability in the SanDisk PrivateAccess application for Windows that... High Unreviewed
CVE-2024-22167 was published Mar 13, 2024
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains a Local Privilege... High Unreviewed
CVE-2024-37130 was published Jun 11, 2024
Luxion KeyShot BIP File Parsing Uncontrolled Search Path Element Remote Code Execution... High Unreviewed
CVE-2024-5509 was published Jun 6, 2024
An authenticated local attacker who successfully exploited this vulnerability could insert and... High Unreviewed
CVE-2024-2637 was published May 14, 2024
Ashlar-Vellum Argon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44438 was published May 3, 2024
Ashlar-Vellum Xenon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44439 was published May 3, 2024
Ashlar-Vellum Lithium Uncontrolled Search Path Element Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44440 was published May 3, 2024
Ashlar-Vellum Cobalt Uncontrolled Search Path Element Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44437 was published May 3, 2024
3CX Uncontrolled Search Path Local Privilege Escalation Vulnerability. This vulnerability allows... High Unreviewed
CVE-2023-27362 was published May 3, 2024
IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking... High Unreviewed
CVE-2024-25050 was published Apr 28, 2024
A DLL Hijacking issue discovered in Soft-o Free Password Manager 1.1.20 allows attackers to... High Unreviewed
CVE-2023-25428 was published May 12, 2023
Uncontrolled search path in the Intel(R) DCM software before version 5.1 may allow an... High Unreviewed
CVE-2022-41998 was published May 10, 2023
A vulnerability has been identified in Siemens Software Center (All versions < V3.0). A DLL... High Unreviewed
CVE-2021-41544 was published Aug 8, 2023
Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated... High Unreviewed
CVE-2020-5740 was published May 24, 2022
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of... High Unreviewed
CVE-2022-4894 was published Aug 16, 2023
Unquoted search path in the software installer for the System Firmware Update Utility (SysFwUpdt)... High Unreviewed
CVE-2023-22841 was published Aug 11, 2023
Dell Alienware Command Center, versions prior to 6.2.7.0, contain an uncontrolled search path... High Unreviewed
CVE-2024-22450 was published Apr 10, 2024
It is possible to sideload a compromised DLL during the installation at elevated privilege. High Unreviewed
CVE-2023-4936 was published Oct 11, 2023
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1... High Unreviewed
CVE-2023-35897 was published Oct 6, 2023
A DLL hijacking vulnerability in Samsung Memory Card & UFD Authentication Utility PC Software... High Unreviewed
CVE-2023-41929 was published Sep 18, 2023
ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element High Unreviewed
CVE-2023-39374 was published Sep 3, 2023
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL)... High Unreviewed
CVE-2023-40596 was published Aug 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database