GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
401 advisories
Filter by severity
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-47422
was published
Oct 9, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43576
was published
Oct 8, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43616
was published
Oct 8, 2024
A potential security vulnerability
has been identified in the HP One Agent for certain HP PC...
High
Unreviewed
CVE-2024-8733
was published
Oct 2, 2024
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in...
High
Unreviewed
CVE-2024-6769
was published
Sep 26, 2024
Untrusted search path under some conditions on Windows allows arbitrary code execution
High
CVE-2024-22190
was published
for
GitPython
(pip)
Jan 10, 2024
GitPython untrusted search path on Windows systems leading to arbitrary code execution
High
CVE-2023-40590
was published
for
gitpython
(pip)
Aug 29, 2023
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to...
High
Unreviewed
CVE-2023-36538
was published
Jul 11, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an...
High
Unreviewed
CVE-2023-34119
was published
Jul 11, 2023
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2....
High
Unreviewed
CVE-2024-5622
was published
Aug 29, 2024
DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below...
High
Unreviewed
CVE-2024-44103
was published
Sep 10, 2024
Ansible Improper Input Validation vulnerability
High
CVE-2018-10874
was published
for
ansible
(pip)
May 13, 2022
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an...
High
Unreviewed
CVE-2024-6473
was published
Sep 3, 2024
Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation...
High
Unreviewed
CVE-2024-38305
was published
Aug 21, 2024
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that...
High
Unreviewed
CVE-2024-41865
was published
Aug 14, 2024
A vulnerability has been identified in TIA Multiuser Server V14 (All versions), TIA Multiuser...
High
Unreviewed
CVE-2022-35868
was published
Feb 14, 2023
Apache Hadoop allows local user to gain root privileges
High
CVE-2023-26031
was published
for
org.apache.hadoop:hadoop-yarn-project
(Maven)
Nov 16, 2023
Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026,...
High
Unreviewed
CVE-2022-22047
was published
Jul 13, 2022
Untrusted Search Path vulnerability in Cato Networks SDP Client on Windows allows Privilege...
High
Unreviewed
CVE-2024-6975
was published
Jul 31, 2024
Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-34123
was published
Jul 9, 2024
Microsoft Dataverse Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-35260
was published
Jun 27, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30100
was published
Jun 11, 2024
A local low privileged attacker can use an untrusted search path in...
High
Unreviewed
CVE-2024-28133
was published
May 14, 2024
Microsoft Exchange Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26198
was published
Mar 12, 2024
ProTip!
Advisories are also available from the
GraphQL API