Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+

697 advisories

Loading
SolarWinds Orion Platform before 2018.4 Hotfix 2 allows privilege escalation through the RabbitMQ... Critical Unreviewed
CVE-2019-9546 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1... High Unreviewed
CVE-2019-4094 was published May 13, 2022
Norton Utilities (prior to 16.0.3.44) may be susceptible to a DLL Preloading vulnerability, which... Moderate Unreviewed
CVE-2018-5235 was published May 13, 2022
DLL injection vulnerability in the installation executables (Autorun.exe and Setup.exe) for Intel... High Unreviewed
CVE-2018-3649 was published May 13, 2022
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software... Moderate Unreviewed
CVE-2018-12160 was published May 13, 2022
Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local... High Unreviewed
CVE-2018-11072 was published May 13, 2022
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have... High Unreviewed
CVE-2018-4938 was published May 13, 2022
** DISPUTED ** DLL hijacking is possible in Sublime Text 3 version 3.1.1 build 3176 on 32-bit... High Unreviewed
CVE-2019-9116 was published May 13, 2022
RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases... High Unreviewed
CVE-2018-11049 was published May 13, 2022
Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick... High Unreviewed
CVE-2018-8090 was published May 13, 2022
Untrusted search path vulnerability in The installer of Windows 10 Fall Creators Update Modify... High Unreviewed
CVE-2018-16177 was published May 13, 2022
In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting... High Unreviewed
CVE-2019-9896 was published May 13, 2022
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load... Critical Unreviewed
CVE-2019-7653 was published May 13, 2022
Uncontrolled search path in the Intel(R) XTU software before version 7.3.0.33 may allow an... High Unreviewed
CVE-2022-22139 was published May 13, 2022
A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can... High Unreviewed
CVE-2021-34606 was published May 12, 2022
A local privilege escalation (PE) vulnerability exists in Palo Alto Networks Cortex XDR agent... High Unreviewed
CVE-2022-0025 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28247 was published May 12, 2022
A misconfiguration in the node default path allows for local privilege escalation from a lower... High Unreviewed
CVE-2021-42743 was published May 7, 2022
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... High Unreviewed
CVE-2022-28714 was published May 6, 2022
SonicWall Global VPN Client 4.10.7.1117 installer (32-bit and 64-bit) and earlier versions have a... High Unreviewed
CVE-2021-20051 was published May 5, 2022
DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows... High Unreviewed
CVE-2022-28792 was published May 4, 2022
Cheetah Path Search Order Hijacking High
CVE-2005-1632 was published for cheetah (pip) May 1, 2022
Opera 7.54 and earlier on Gentoo Linux uses an insecure path for plugins, which could allow local... High Unreviewed
CVE-2005-0457 was published May 1, 2022
A DLL search path vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175... High Unreviewed
CVE-2022-0192 was published Apr 23, 2022
A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.3 Update 1... High Unreviewed
CVE-2022-23449 was published Apr 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database