GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
626 advisories
Filter by severity
IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking...
High
Unreviewed
CVE-2024-25050
was published
Apr 28, 2024
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in...
High
Unreviewed
CVE-2024-33672
was published
Apr 26, 2024
VT STUDIO Ver.8.32 and earlier contains an issue with the DLL search path, which may lead to...
High
Unreviewed
CVE-2024-28099
was published
Apr 15, 2024
Dell Alienware Command Center, versions prior to 6.2.7.0, contain an uncontrolled search path...
High
Unreviewed
CVE-2024-22450
was published
Apr 10, 2024
EasyRange Ver 1.41 contains an issue with the executable file search path when displaying an...
High
Unreviewed
CVE-2024-28131
was published
Mar 26, 2024
Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated...
High
Unreviewed
CVE-2024-22346
was published
Mar 14, 2024
A potential DLL hijacking vulnerability in the SanDisk PrivateAccess application for Windows that...
High
Unreviewed
CVE-2024-22167
was published
Mar 13, 2024
Privilege escalation in windows agent plugin in Checkmk before 2.2.0p23, 2.1.0p40 and 2.0.0 (EOL)...
High
Unreviewed
CVE-2024-0670
was published
Mar 11, 2024
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could...
High
Unreviewed
CVE-2024-20338
was published
Mar 6, 2024
electron-builder's NSIS installer - execute arbitrary code on the target machine (Windows only)
High
CVE-2024-27303
was published
for
app-builder-lib
(npm)
Mar 4, 2024
Dell Update Package (DUP), Versions prior to 4.9.10 contain an Uncontrolled Search Path...
Moderate
Unreviewed
CVE-2023-39254
was published
Mar 1, 2024
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82
insecurely loads libraries, which may...
High
Unreviewed
CVE-2024-1595
was published
Feb 29, 2024
The vulnerability, if exploited, could allow a malicious entity with access to the file system...
High
Unreviewed
CVE-2023-6132
was published
Feb 29, 2024
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or...
Moderate
Unreviewed
CVE-2023-49114
was published
Feb 26, 2024
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for...
Critical
Unreviewed
CVE-2024-23054
was published
Feb 5, 2024
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products,...
High
Unreviewed
CVE-2024-23940
was published
Jan 29, 2024
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking...
High
Unreviewed
CVE-2023-51711
was published
Jan 24, 2024
Uncontrolled search path in some Intel NUC Pro Software Suite Configuration Tool software...
High
Unreviewed
CVE-2023-32272
was published
Jan 19, 2024
Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0...
High
Unreviewed
CVE-2023-6740
was published
Jan 12, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could...
High
Unreviewed
CVE-2023-29445
was published
Jan 10, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could...
Moderate
Unreviewed
CVE-2023-29444
was published
Jan 10, 2024
There is a DLL hijacking vulnerability in ZTE ZXCLOUD iRAI, an attacker could place a fake DLL...
Low
Unreviewed
CVE-2023-41782
was published
Jan 5, 2024
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client (UDC...
High
Unreviewed
CVE-2023-6338
was published
Jan 3, 2024
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the program failed to...
Moderate
Unreviewed
CVE-2023-41780
was published
Jan 3, 2024
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated...
High
Unreviewed
CVE-2023-43064
was published
Dec 25, 2023
ProTip!
Advisories are also available from the
GraphQL API