Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,226
Erlang
31
GitHub Actions
19
Go
1,991
Maven
5,000+
npm
3,708
NuGet
661
pip
3,339
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

686 advisories

Loading
Dell Update Package (DUP), Versions prior to 4.9.10 contain an Uncontrolled Search Path... Moderate Unreviewed
CVE-2023-39254 was published Mar 1, 2024
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may... High Unreviewed
CVE-2024-1595 was published Feb 29, 2024
The vulnerability, if exploited, could allow a malicious entity with access to the file system... High Unreviewed
CVE-2023-6132 was published Feb 29, 2024
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This... High Unreviewed
CVE-2022-4956 was published Sep 30, 2023
An installer that loads or executes files using an unconstrained search path may be vulnerable to... High Unreviewed
CVE-2022-43703 was published Jul 28, 2023
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for... Critical Unreviewed
CVE-2024-23054 was published Feb 5, 2024
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products,... High Unreviewed
CVE-2024-23940 was published Jan 29, 2024
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking... High Unreviewed
CVE-2023-51711 was published Jan 24, 2024
Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0... High Unreviewed
CVE-2023-6740 was published Jan 12, 2024
The LSP (Language Server Protocol) plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91... High Unreviewed
CVE-2022-23853 was published Feb 12, 2022
There is a DLL hijacking vulnerability in ZTE ZXCLOUD iRAI, an attacker could place a fake DLL... Low Unreviewed
CVE-2023-41782 was published Jan 5, 2024
Uncontrolled search path in some Intel NUC Pro Software Suite Configuration Tool software... High Unreviewed
CVE-2023-32272 was published Jan 19, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... High Unreviewed
CVE-2023-29445 was published Jan 10, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... Moderate Unreviewed
CVE-2023-29444 was published Jan 10, 2024
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the  program  failed to... Moderate Unreviewed
CVE-2023-41780 was published Jan 3, 2024
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client (UDC... High Unreviewed
CVE-2023-6338 was published Jan 3, 2024
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated... High Unreviewed
CVE-2023-43064 was published Dec 25, 2023
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation... High Unreviewed
CVE-2020-28369 was published Dec 12, 2023
An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x... High Unreviewed
CVE-2023-41117 was published Dec 12, 2023
A vulnerability has been identified in LOGO! Soft Comfort (All versions). The software insecurely... High Unreviewed
CVE-2020-25244 was published May 24, 2022
DLL hijacking vulnerability in TTplayer version 7.0.2, allows local attackers to escalate... High Unreviewed
CVE-2023-48861 was published Dec 7, 2023
A vulnerability has been found in PeaZip 9.4.0 and classified as problematic. Affected by this... Moderate Unreviewed
CVE-2023-6891 was published Dec 17, 2023
DLL Hijacking vulnerability in Huddly HuddlyCameraService before version 8.0.7, not including... High Unreviewed
CVE-2023-45252 was published Dec 1, 2023
An Untrusted search path vulnerability in NetEase CloudMusic 2.10.4 for Windows allows local... High Unreviewed
CVE-2023-47454 was published Nov 30, 2023
Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows... High Unreviewed
CVE-2023-31210 was published Dec 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database