Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

627 advisories

Loading
A library injection issue was addressed with additional restrictions. This issue is fixed in... Moderate Unreviewed
CVE-2024-44168 was published Sep 17, 2024
Execution with Unnecessary Privileges in JupyterApp High
CVE-2022-39286 was published for jupyter-core (pip) Oct 26, 2022
Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated... High Unreviewed
CVE-2024-22346 was published Mar 14, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2024-8766 was published Sep 16, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2024-34016 was published Sep 16, 2024
Mattermost Desktop App Uncontrolled Search Path Vulnerability Moderate
CVE-2024-39613 was published for mattermost-desktop (npm) Sep 16, 2024
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow... Moderate Unreviewed
CVE-2024-34153 was published Sep 16, 2024
A vulnerability in Cisco Meraki Systems Manager (SM) Agent for Windows could allow an... High Unreviewed
CVE-2024-20430 was published Sep 12, 2024
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged... High Unreviewed
CVE-2024-6510 was published Sep 12, 2024
An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared... High Unreviewed
CVE-2024-5290 was published Aug 7, 2024
An uncontrolled search path in the agent of Ivanti EPM before 2022 SU6, or the 2024 September... Moderate Unreviewed
CVE-2024-8441 was published Sep 10, 2024
DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below... High Unreviewed
CVE-2024-44107 was published Sep 10, 2024
Antilles Dependency Confusion Vulnerability High
CVE-2021-3840 was published for antilles-tools (pip) Nov 3, 2021
A local privilege escalation is caused by Overwolf loading and executing certain dynamic link... High Unreviewed
CVE-2024-7834 was published Sep 4, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11... Low Unreviewed
CVE-2024-6595 was published Jul 17, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2024-34017 was published Aug 29, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2024-34019 was published Aug 29, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The... Moderate Unreviewed
CVE-2024-7061 was published Aug 7, 2024
Elevation of privilege issue in M-Files Installer versions before 22.6 on Windows allows user to... High Unreviewed
CVE-2023-0213 was published Mar 29, 2023
VIPRE Advanced Security PMAgent Uncontrolled Search Path Element Local Privilege Escalation... High Unreviewed
CVE-2024-5929 was published Aug 21, 2024
** DISPUTED ** A vulnerability has been found in Scooter Software Beyond Compare up to 3.3.5... High Unreviewed
CVE-2024-7886 was published Aug 17, 2024
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or... Moderate Unreviewed
CVE-2023-49114 was published Feb 26, 2024
Uncontrolled search path in some EMON software before version 11.44 may allow an authenticated... Moderate Unreviewed
CVE-2024-28953 was published Aug 14, 2024
Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may... Moderate Unreviewed
CVE-2024-29015 was published Aug 14, 2024
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an... Moderate Unreviewed
CVE-2024-28887 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database