GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
626 advisories
Filter by severity
Uncontrolled search path element in some Intel(R) RealSense(TM) Dynamic Calibration software...
Moderate
Unreviewed
CVE-2023-29504
was published
Nov 14, 2023
Uncontrolled search path element in some Intel(R) Server Information Retrieval Utility software...
Moderate
Unreviewed
CVE-2023-27513
was published
Nov 14, 2023
Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before...
Moderate
Unreviewed
CVE-2023-28740
was published
Nov 14, 2023
Uncontrolled search path element in some Intel(R) Chipset Device Software before version 10.1...
Moderate
Unreviewed
CVE-2023-28388
was published
Nov 14, 2023
An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow...
High
Unreviewed
CVE-2023-4632
was published
Nov 9, 2023
General Electric MiCOM S1 Agile is vulnerable to an attacker achieving code execution by placing...
Moderate
Unreviewed
CVE-2023-0898
was published
Nov 7, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability that allows Windows users with low...
High
Unreviewed
CVE-2023-31027
was published
Nov 2, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability where an uncontrolled search path...
High
Unreviewed
CVE-2023-31016
was published
Nov 2, 2023
SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL...
High
Unreviewed
CVE-2023-44220
was published
Oct 27, 2023
It is possible to sideload a compromised DLL during the installation at elevated privilege.
High
Unreviewed
CVE-2023-4936
was published
Oct 11, 2023
A vulnerability was found in XINJE XDPPro up to 3.7.17a. It has been rated as critical. Affected...
High
Unreviewed
CVE-2023-5463
was published
Oct 10, 2023
Local privilege escalation due to DLL hijacking vulnerability. The following products are...
Moderate
Unreviewed
CVE-2023-45248
was published
Oct 9, 2023
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1...
High
Unreviewed
CVE-2023-35897
was published
Oct 6, 2023
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This...
High
Unreviewed
CVE-2022-4956
was published
Sep 30, 2023
A DLL hijacking vulnerability in Samsung Memory Card & UFD Authentication Utility PC Software...
High
Unreviewed
CVE-2023-41929
was published
Sep 18, 2023
ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element
High
Unreviewed
CVE-2023-39374
was published
Sep 3, 2023
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL)...
High
Unreviewed
CVE-2023-40596
was published
Aug 30, 2023
McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve...
High
Unreviewed
CVE-2023-40352
was published
Aug 21, 2023
An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client (UDC...
High
Unreviewed
CVE-2023-3078
was published
Aug 17, 2023
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of...
High
Unreviewed
CVE-2022-4894
was published
Aug 16, 2023
Uncontrolled search path element for some Intel(R) Server Board M10JNP2SB integrated BMC video...
High
Unreviewed
CVE-2023-34355
was published
Aug 11, 2023
Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version...
High
Unreviewed
CVE-2023-25182
was published
Aug 11, 2023
Uncontrolled search path in the Intel(R) Distribution of OpenVINO(TM) Toolkit before version 2022...
High
Unreviewed
CVE-2023-28405
was published
Aug 11, 2023
Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before...
High
Unreviewed
CVE-2023-28823
was published
Aug 11, 2023
Uncontrolled search path for the Intel(R) AI Hackathon software before version 2.0.0 may allow an...
High
Unreviewed
CVE-2023-28380
was published
Aug 11, 2023
ProTip!
Advisories are also available from the
GraphQL API