Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

62 advisories

Loading
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier,... Moderate Unreviewed
CVE-2008-5983 was published May 17, 2022
Untrusted search path vulnerability in the pthread_win32_process_attach_np function in pthreadGC2... Moderate Unreviewed
CVE-2010-5250 was published May 17, 2022
DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An... Moderate Unreviewed
CVE-2019-7365 was published May 24, 2022
Adobe Animate CC versions 19.2.1 and earlier have an insecure library loading (dll hijacking)... Moderate Unreviewed
CVE-2019-7960 was published May 24, 2022
An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL... Moderate Unreviewed
CVE-2019-18215 was published May 24, 2022
In Sony Catalyst Production Suite through 2019.1 (1.1.0.21) and Catalyst Browse through 2019.1 (1... Moderate Unreviewed
CVE-2019-19364 was published May 24, 2022
In the Quick Access Service (QAAdminAgent.exe) in Acer Quick Access V2.01.3000 through 2.01.3027... Moderate Unreviewed
CVE-2019-18670 was published May 24, 2022
Barco ClickShare Button R9861500D01 devices before 1.9.0 have Missing Support for Integrity Check... Moderate Unreviewed
CVE-2019-18829 was published May 24, 2022
Trend Micro HouseCall for Home Networks (versions below 5.3.0.1063) could be exploited via a DLL... Moderate Unreviewed
CVE-2019-19689 was published May 24, 2022
A vulnerability in the windows installer of Google Earth Pro versions prior to 7.3.3 allows an... Moderate Unreviewed
CVE-2020-8895 was published May 24, 2022
VMware Workstation (15.x prior to 15.5.1) and Horizon View Agent (7.10.x prior to 7.10.1 and 7.5... Moderate Unreviewed
CVE-2019-5539 was published May 24, 2022
The usage of Tomcat in Jira before version 8.5.2 allows local attackers with permission to write... Moderate Unreviewed
CVE-2019-20400 was published May 24, 2022
The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5,... Moderate Unreviewed
CVE-2019-20406 was published May 24, 2022
OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g., on some Linux... Moderate Unreviewed
CVE-2020-8793 was published May 24, 2022
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control... Moderate Unreviewed
CVE-2020-5958 was published May 24, 2022
Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017... Moderate Unreviewed
CVE-2020-3803 was published May 24, 2022
An issue was discovered in LG PC Suite for LG G3 and earlier (aka LG PC Suite v5.3.27 and earlier... Moderate Unreviewed
CVE-2019-20769 was published May 24, 2022
A CWE-426: Untrusted Search Path vulnerability exists in Vijeo Designer Basic (V1.1 HotFix 15 and... Moderate Unreviewed
CVE-2020-7490 was published May 24, 2022
DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion... Moderate Unreviewed
CVE-2020-7279 was published May 24, 2022
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to execute... Moderate Unreviewed
CVE-2019-20419 was published May 24, 2022
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due... Moderate Unreviewed
CVE-2020-9100 was published May 24, 2022
In version 12.1.0.1004 and below of 360 Total Security,when TPI calls the browser process, there... Moderate Unreviewed
CVE-2020-15722 was published May 24, 2022
In the version 12.1.0.1005 and below of 360 Total Security, when the Gamefolde calls GameChrome... Moderate Unreviewed
CVE-2020-15724 was published May 24, 2022
Shenzhen Tencent TIM Windows client 3.0.0.21315 has a DLL hijacking vulnerability, which can be... Moderate Unreviewed
CVE-2020-24160 was published May 24, 2022
NetEase Youdao Dictionary has a DLL hijacking vulnerability, which can be exploited by attackers... Moderate Unreviewed
CVE-2020-24159 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database