Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

686 advisories

Loading
A CWE-427 - Uncontrolled Search Path Element vulnerability exists that could allow an attacker... Moderate Unreviewed
CVE-2022-34755 was published Jul 6, 2023
pipreqs vulnerable to Dependency Confusion Critical
CVE-2023-31543 was published for pipreqs (pip) Jun 30, 2023
Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking... High Unreviewed
CVE-2023-28929 was published Jun 27, 2023
A maliciously crafted DLL file can be forced to write beyond allocated boundaries in the Autodesk... High Unreviewed
CVE-2023-27908 was published Jun 23, 2023
Uncontrolled search path element vulnerability in Backup Management Functionality in Synology... High Unreviewed
CVE-2023-0142 was published Jun 13, 2023
A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter... High Unreviewed
CVE-2023-0976 was published Jun 7, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in... High Unreviewed
CVE-2023-3091 was published Jun 4, 2023
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains DLL Hijacking Vulnerabilities. A regular... High Unreviewed
CVE-2023-28080 was published May 30, 2023
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk... High Unreviewed
CVE-2023-25005 was published May 12, 2023
A DLL Hijacking issue discovered in Soft-o Free Password Manager 1.1.20 allows attackers to... High Unreviewed
CVE-2023-25428 was published May 12, 2023
Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update... High Unreviewed
CVE-2023-31197 was published May 12, 2023
Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before... High Unreviewed
CVE-2023-22355 was published May 10, 2023
Uncontrolled search path in some Intel(R) Pathfinder for RISC-V software may allow an... High Unreviewed
CVE-2023-27386 was published May 10, 2023
Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit... High Unreviewed
CVE-2023-27298 was published May 10, 2023
Uncontrolled search path in the Intel(R) DCM software before version 5.1 may allow an... High Unreviewed
CVE-2022-41998 was published May 10, 2023
Uncontrolled search path in the Intel(R) Quartus(R) Prime Pro edition software before version 22... High Unreviewed
CVE-2022-41693 was published May 10, 2023
Uncontrolled search path for the DSP Builder software installer before version 22.4 for Intel(R)... High Unreviewed
CVE-2022-43474 was published May 10, 2023
Uncontrolled search path element in the Intel(R) VTune(TM) Profiler software before version 2023... High Unreviewed
CVE-2022-41982 was published May 10, 2023
Uncontrolled search path element in the HotKey Services for some Intel(R) NUC P14E Laptop Element... High Unreviewed
CVE-2022-41628 was published May 10, 2023
Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 4.2 may allow an... High Unreviewed
CVE-2022-32576 was published May 10, 2023
Uncontrolled search path for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may allow... High Unreviewed
CVE-2022-34848 was published May 10, 2023
Uncontrolled search path in some Intel(R) NUC Chaco Canyon BIOS update software before version... High Unreviewed
CVE-2022-38101 was published May 10, 2023
Uncontrolled search path for the Intel(R) HDMI Firmware Update tool for NUC before version 1.79.1... High Unreviewed
CVE-2022-21162 was published May 10, 2023
Uncontrolled search path in the Intel(R) MacCPUID software before version 3.2 may allow an... High Unreviewed
CVE-2022-27180 was published May 10, 2023
CyberGhostVPN Windows Client before v8.3.10.10015 was discovered to contain a DLL injection... High Unreviewed
CVE-2023-30237 was published May 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database