GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+
697 advisories
Filter by severity
DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to...
High
Unreviewed
CVE-2022-27842
was published
Apr 12, 2022
DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute...
High
Unreviewed
CVE-2022-27843
was published
Apr 12, 2022
Uncontrolled search path element vulnerability in Samsung Update prior to version 3.0.77.0 allows...
High
Unreviewed
CVE-2022-28541
was published
Apr 12, 2022
Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer...
High
Unreviewed
CVE-2022-28779
was published
Apr 12, 2022
A DLL hijacking vulnerability in Samsung portable SSD T5 PC software before 1.6.9 could allow a...
High
Unreviewed
CVE-2022-25154
was published
Apr 6, 2022
Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) are vulnerable to a DLL hijacking...
High
Unreviewed
CVE-2022-1098
was published
Apr 3, 2022
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local...
High
Unreviewed
CVE-2022-24426
was published
Apr 2, 2022
The G-RAID 4/8 Software Utility setups for Windows were affected by a DLL hijacking vulnerability...
High
Unreviewed
CVE-2022-22996
was published
Mar 31, 2022
Razer Synapse before 3.7.0228.022817 allows privilege escalation because it relies on ...
High
Unreviewed
CVE-2021-44226
was published
Mar 25, 2022
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x searches for and loads DLLs as dynamic...
Moderate
Unreviewed
CVE-2020-25182
was published
Mar 19, 2022
The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs),...
High
Unreviewed
CVE-2022-25969
was published
Mar 18, 2022
The installer of WPS Office Version 10.8.0.5745 insecurely load shcore.dll, allowing an attacker...
High
Unreviewed
CVE-2022-26081
was published
Mar 18, 2022
WPS Presentation 11.8.0.5745 insecurely load d3dx9_41.dll when opening .pps files('current...
High
Unreviewed
CVE-2022-26511
was published
Mar 18, 2022
The following Yokogawa Electric products contain insecure DLL loading issues. CENTUM CS 3000...
High
Unreviewed
CVE-2022-23401
was published
Mar 12, 2022
Trend Micro Password Manager (Consumer) installer version 5.0.0.1262 and below is vulnerable to...
High
Unreviewed
CVE-2022-26337
was published
Mar 9, 2022
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and...
Moderate
Unreviewed
CVE-2022-26319
was published
Mar 9, 2022
VMware Tools for Windows (11.x.y and 10.x.y prior to 12.0.0) contains an uncontrolled search path...
High
Unreviewed
CVE-2022-22943
was published
Mar 4, 2022
Adobe Creative Cloud Desktop version 2.7.0.13 (and earlier) is affected by an Uncontrolled Search...
High
Unreviewed
CVE-2022-23202
was published
Feb 17, 2022
Affected versions of Atlassian Confluence Server and Data Center allow authenticated local...
High
Unreviewed
CVE-2021-43940
was published
Feb 16, 2022
AXIS IP Utility prior to 4.17.0 allows for remote code execution and local privilege escalation...
High
Unreviewed
CVE-2022-23410
was published
Feb 15, 2022
Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have an Uncontrolled Search...
Critical
Unreviewed
CVE-2022-24955
was published
Feb 12, 2022
The LSP (Language Server Protocol) plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91...
High
Unreviewed
CVE-2022-23853
was published
Feb 12, 2022
Git LFS can execute a Git binary from the current directory
Critical
CVE-2020-27955
was published
for
github.com/git-lfs/git-lfs
(Go)
Feb 11, 2022
Uncontrolled Search Path Element in software for Intel(R) PROSet/Wireless Wi-Fi in Windows 10 and...
Moderate
Unreviewed
CVE-2021-0169
was published
Feb 11, 2022
Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an...
High
Unreviewed
CVE-2021-33101
was published
Feb 11, 2022
ProTip!
Advisories are also available from the
GraphQL API