GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
482 advisories
Filter by severity
Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-49515
was published
Nov 12, 2024
A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2...
High
Unreviewed
CVE-2024-36507
was published
Nov 12, 2024
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49043
was published
Nov 12, 2024
A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT...
High
Unreviewed
CVE-2024-7995
was published
Nov 5, 2024
Untrusted Search Path vulnerability in OpenText™ Application Lifecycle Management (ALM),Quality...
Moderate
Unreviewed
CVE-2023-32266
was published
Oct 16, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-47422
was published
Oct 9, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43616
was published
Oct 8, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43576
was published
Oct 8, 2024
A potential security vulnerability
has been identified in the HP One Agent for certain HP PC...
High
Unreviewed
CVE-2024-8733
was published
Oct 2, 2024
A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This...
High
Unreviewed
CVE-2024-9325
was published
Sep 29, 2024
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in...
High
Unreviewed
CVE-2024-6769
was published
Sep 26, 2024
DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below...
High
Unreviewed
CVE-2024-44103
was published
Sep 10, 2024
SAP BusinessObjects Business Intelligence Platform allows a high privilege user to run client...
Moderate
Unreviewed
CVE-2024-45281
was published
Sep 10, 2024
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an...
High
Unreviewed
CVE-2024-6473
was published
Sep 3, 2024
An untrusted search path vulnerability in B&R APROL <= R 4.4-00P3 may be used by an authenticated...
Moderate
Unreviewed
CVE-2024-5623
was published
Aug 29, 2024
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2....
High
Unreviewed
CVE-2024-5622
was published
Aug 29, 2024
Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation...
High
Unreviewed
CVE-2024-38305
was published
Aug 21, 2024
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting...
Moderate
Unreviewed
CVE-2024-42439
was published
Aug 14, 2024
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that...
High
Unreviewed
CVE-2024-41865
was published
Aug 14, 2024
Untrusted Search Path vulnerability in Cato Networks SDP Client on Windows allows Privilege...
High
Unreviewed
CVE-2024-6975
was published
Jul 31, 2024
Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-34123
was published
Jul 9, 2024
Microsoft Dataverse Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-35260
was published
Jun 27, 2024
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the...
Moderate
Unreviewed
CVE-2024-36071
was published
Jun 20, 2024
A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This...
High
Unreviewed
CVE-2024-6080
was published
Jun 18, 2024
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail...
Critical
Unreviewed
CVE-2024-38462
was published
Jun 16, 2024
ProTip!
Advisories are also available from the
GraphQL API