Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

390 advisories

Loading
Untrusted search path in some Zoom 32 bit Windows clients may allow an authenticated user to... High Unreviewed
CVE-2024-24697 was published Feb 14, 2024
Cybozu KUNAI for Android 3.0.20 to 3.0.21 allows a remote unauthenticated attacker to cause a... High Unreviewed
CVE-2024-23304 was published Feb 6, 2024
Microsoft Printer Metadata Troubleshooter Tool Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21325 was published Jan 9, 2024
Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation... High Unreviewed
CVE-2023-48670 was published Dec 22, 2023
Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for... High Unreviewed
CVE-2023-43586 was published Dec 14, 2023
A untrusted search path vulnerability in Fortinet FortiClientWindows 7.0.9 allows an attacker to... High Unreviewed
CVE-2023-41840 was published Nov 14, 2023
Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the... High Unreviewed
CVE-2021-26738 was published Oct 23, 2023
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833. High Unreviewed
CVE-2023-4736 was published Sep 2, 2023
An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed... High Unreviewed
CVE-2023-41105 was published Aug 23, 2023
Uncontrolled search path in some Intel(R) RST software before versions 16.8.5.1014.5, 17.11.3... High Unreviewed
CVE-2022-43456 was published Aug 11, 2023
Untrusted search path in the installer for Zoom Desktop Client for Windows before 5.14.5 may... High Unreviewed
CVE-2023-36540 was published Aug 8, 2023
Untrusted search path in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-36536 was published Jul 11, 2023
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to... High Unreviewed
CVE-2023-36538 was published Jul 11, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-34119 was published Jul 11, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34144 was published Jun 27, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34145 was published Jun 27, 2023
Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7) installer allows a local escalation... High Unreviewed
CVE-2023-28143 was published Apr 18, 2023
An issue found in Wondershare Technology Co., Ltd UniConverter v.14.0.0 allows a remote attacker... High Unreviewed
CVE-2023-27761 was published Apr 4, 2023
An issue found in Wondershare Technology Co., Ltd DemoCreator v.6.0.0 allows a remote attacker to... High Unreviewed
CVE-2023-27762 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd MobileTrans v.4.0.2 allows a remote attacker to... High Unreviewed
CVE-2023-27763 was published Apr 4, 2023
An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to... High Unreviewed
CVE-2023-27760 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to... High Unreviewed
CVE-2023-27768 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to... High Unreviewed
CVE-2023-27766 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to... High Unreviewed
CVE-2023-27767 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to... High Unreviewed
CVE-2023-27769 was published Apr 4, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database