Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

666 advisories

Loading
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation... High Unreviewed
CVE-2020-28369 was published Dec 12, 2023
Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows... High Unreviewed
CVE-2023-31210 was published Dec 13, 2023
A vulnerability has been found in PeaZip 9.4.0 and classified as problematic. Affected by this... Moderate Unreviewed
CVE-2023-6891 was published Dec 17, 2023
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated... High Unreviewed
CVE-2023-43064 was published Dec 25, 2023
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the  program  failed to... Moderate Unreviewed
CVE-2023-41780 was published Jan 3, 2024
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client (UDC... High Unreviewed
CVE-2023-6338 was published Jan 3, 2024
There is a DLL hijacking vulnerability in ZTE ZXCLOUD iRAI, an attacker could place a fake DLL... Low Unreviewed
CVE-2023-41782 was published Jan 5, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... Moderate Unreviewed
CVE-2023-29444 was published Jan 10, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... High Unreviewed
CVE-2023-29445 was published Jan 10, 2024
Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0... High Unreviewed
CVE-2023-6740 was published Jan 12, 2024
Uncontrolled search path in some Intel NUC Pro Software Suite Configuration Tool software... High Unreviewed
CVE-2023-32272 was published Jan 19, 2024
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking... High Unreviewed
CVE-2023-51711 was published Jan 24, 2024
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products,... High Unreviewed
CVE-2024-23940 was published Jan 29, 2024
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for... Critical Unreviewed
CVE-2024-23054 was published Feb 5, 2024
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or... Moderate Unreviewed
CVE-2023-49114 was published Feb 26, 2024
The vulnerability, if exploited, could allow a malicious entity with access to the file system... High Unreviewed
CVE-2023-6132 was published Feb 29, 2024
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may... High Unreviewed
CVE-2024-1595 was published Feb 29, 2024
Dell Update Package (DUP), Versions prior to 4.9.10 contain an Uncontrolled Search Path... Moderate Unreviewed
CVE-2023-39254 was published Mar 1, 2024
electron-builder's NSIS installer - execute arbitrary code on the target machine (Windows only) High
CVE-2024-27303 was published for app-builder-lib (npm) Mar 4, 2024
bruno-1337
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could... High Unreviewed
CVE-2024-20338 was published Mar 6, 2024
Privilege escalation in windows agent plugin in Checkmk before 2.2.0p23, 2.1.0p40 and 2.0.0 (EOL)... High Unreviewed
CVE-2024-0670 was published Mar 11, 2024
A potential DLL hijacking vulnerability in the SanDisk PrivateAccess application for Windows that... High Unreviewed
CVE-2024-22167 was published Mar 13, 2024
Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated... High Unreviewed
CVE-2024-22346 was published Mar 14, 2024
EasyRange Ver 1.41 contains an issue with the executable file search path when displaying an... High Unreviewed
CVE-2024-28131 was published Mar 26, 2024
Uncontrolled search path element issue exists in SonicDICOM Media Viewer 2.3.2 and earlier, which... High Unreviewed
CVE-2024-29734 was published Apr 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database