GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
627 advisories
Filter by severity
A uncontrolled search path element issue was discovered in Vyaire Medical CareFusion Upgrade...
High
Unreviewed
CVE-2018-5457
was published
May 13, 2022
A vulnerability in the search path processing of Cisco Directory Connector could allow an...
Moderate
Unreviewed
CVE-2019-1794
was published
May 13, 2022
The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library...
High
Unreviewed
CVE-2019-6534
was published
May 13, 2022
Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting...
High
Unreviewed
CVE-2017-1000010
was published
May 13, 2022
Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection.
High
Unreviewed
CVE-2019-9634
was published
May 13, 2022
SolarWinds Orion Platform before 2018.4 Hotfix 2 allows privilege escalation through the RabbitMQ...
Critical
Unreviewed
CVE-2019-9546
was published
May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1...
High
Unreviewed
CVE-2019-4094
was published
May 13, 2022
Norton Utilities (prior to 16.0.3.44) may be susceptible to a DLL Preloading vulnerability, which...
Moderate
Unreviewed
CVE-2018-5235
was published
May 13, 2022
DLL injection vulnerability in the installation executables (Autorun.exe and Setup.exe) for Intel...
High
Unreviewed
CVE-2018-3649
was published
May 13, 2022
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software...
Moderate
Unreviewed
CVE-2018-12160
was published
May 13, 2022
Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local...
High
Unreviewed
CVE-2018-11072
was published
May 13, 2022
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have...
High
Unreviewed
CVE-2018-4938
was published
May 13, 2022
** DISPUTED ** DLL hijacking is possible in Sublime Text 3 version 3.1.1 build 3176 on 32-bit...
High
Unreviewed
CVE-2019-9116
was published
May 13, 2022
RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases...
High
Unreviewed
CVE-2018-11049
was published
May 13, 2022
Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick...
High
Unreviewed
CVE-2018-8090
was published
May 13, 2022
Untrusted search path vulnerability in The installer of Windows 10 Fall Creators Update Modify...
High
Unreviewed
CVE-2018-16177
was published
May 13, 2022
In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting...
High
Unreviewed
CVE-2019-9896
was published
May 13, 2022
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load...
Critical
Unreviewed
CVE-2019-7653
was published
May 13, 2022
Uncontrolled search path in the Intel(R) XTU software before version 7.3.0.33 may allow an...
High
Unreviewed
CVE-2022-22139
was published
May 13, 2022
A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can...
High
Unreviewed
CVE-2021-34606
was published
May 12, 2022
A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent...
High
Unreviewed
CVE-2022-0025
was published
May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x...
Moderate
Unreviewed
CVE-2022-28247
was published
May 12, 2022
A misconfiguration in the node default path allows for local privilege escalation from a lower...
High
Unreviewed
CVE-2021-42743
was published
May 7, 2022
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x...
High
Unreviewed
CVE-2022-28714
was published
May 6, 2022
SonicWall Global VPN Client 4.10.7.1117 installer (32-bit and 64-bit) and earlier versions have a...
High
Unreviewed
CVE-2021-20051
was published
May 5, 2022
ProTip!
Advisories are also available from the
GraphQL API