Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,110
Erlang
29
GitHub Actions
19
Go
1,932
Maven
5,000+
npm
3,666
NuGet
642
pip
3,285
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

454 advisories

Loading
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2024-47422 was published Oct 9, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43576 was published Oct 8, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43616 was published Oct 8, 2024
A potential security vulnerability has been identified in the HP One Agent for certain HP PC... High Unreviewed
CVE-2024-8733 was published Oct 2, 2024
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in... High Unreviewed
CVE-2024-6769 was published Sep 26, 2024
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to... High Unreviewed
CVE-2023-36538 was published Jul 11, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-34119 was published Jul 11, 2023
An untrusted search path vulnerability in B&R APROL <= R 4.4-00P3 may be used by an authenticated... Moderate Unreviewed
CVE-2024-5623 was published Aug 29, 2024
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2.... High Unreviewed
CVE-2024-5622 was published Aug 29, 2024
DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below... High Unreviewed
CVE-2024-44103 was published Sep 10, 2024
SAP BusinessObjects Business Intelligence Platform allows a high privilege user to run client... Moderate Unreviewed
CVE-2024-45281 was published Sep 10, 2024
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an... High Unreviewed
CVE-2024-6473 was published Sep 3, 2024
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail... Critical Unreviewed
CVE-2024-38462 was published Jun 16, 2024
Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation... High Unreviewed
CVE-2024-38305 was published Aug 21, 2024
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting... Moderate Unreviewed
CVE-2024-42439 was published Aug 14, 2024
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that... High Unreviewed
CVE-2024-41865 was published Aug 14, 2024
A vulnerability has been identified in TIA Multiuser Server V14 (All versions), TIA Multiuser... High Unreviewed
CVE-2022-35868 was published Feb 14, 2023
Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026,... High Unreviewed
CVE-2022-22047 was published Jul 13, 2022
Untrusted Search Path vulnerability in Cato Networks SDP Client on Windows allows Privilege... High Unreviewed
CVE-2024-6975 was published Jul 31, 2024
Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2024-34123 was published Jul 9, 2024
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the... Moderate Unreviewed
CVE-2024-36071 was published Jun 20, 2024
Microsoft Dataverse Remote Code Execution Vulnerability High Unreviewed
CVE-2024-35260 was published Jun 27, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30100 was published Jun 11, 2024
A local low privileged attacker can use an untrusted search path in... High Unreviewed
CVE-2024-28133 was published May 14, 2024
Microsoft Exchange Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26198 was published Mar 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database